Massive password-stealing attack hits 75k Fortinet firewalls
Summary
A widespread attack targeting Fortinet firewalls has resulted in the compromise of approximately 75,000 devices. Attackers are exploiting these devices to steal credentials, potentially granting them access to sensitive internal networks.
IFF Assessment
FOE
This article reports on a large-scale credential-stealing attack, which directly harms defenders by exposing sensitive information and network access.
Defender Context
Defenders should immediately be aware of this widespread attack impacting Fortinet firewalls. Prioritizing credential rotation and implementing multi-factor authentication on all affected devices is critical to mitigate further compromise and prevent attackers from leveraging stolen access.