Sweeping Credential-Harvesting Heist Compromises +30K Fortinet Devices

Summary

Attackers have compromised over 30,000 Fortinet devices globally through a credential-harvesting campaign targeting multiple sectors across nearly 200 countries. The attackers have compiled working credentials for the compromised devices, posing a severe risk to organizations relying on Fortinet infrastructure. The broad geographic and sectoral scope suggests a widespread, opportunistic attack leveraging weak or default credentials.

Indicators of Compromise

• malware — credential-harvesting campaign

Entities