• Home
• Technology

 Cybersecurity firms Hudson Rock and SOCRadar have uncovered a massive cyber attack targeting Fortinet firewalls and Virtual Private Network (VPN) services, exposing tens of thousands of organizations globally to data theft and system breaches.

Dubbed "FortiBleed," the campaign does not exploit a new zero-day vulnerability. Instead, it targets devices secured with weak passwords or previously leaked credentials. Hackers utilized automated tools to scan the internet for publicly exposed Fortinet systems, launching credential-stuffing attacks using massive leaked databases. Once inside, attackers monitored network traffic and harvested further credentials for lateral movement.

The scope of the breach is substantial; Hudson Rock identified over 73,000 compromised Fortinet-related digital addresses, while SOCRadar estimated more than 30,000 affected devices globally. High-profile entities appeared within the compromised data pool, including Accenture, Comcast, Foxconn, Lenovo, Oracle, Samsung Electronics, Siemens, and PwC. While most listed giants have yet to officially confirm a breach, Lenovo acknowledged receiving media inquiries without providing further details.