Fortinet Firewalls Hacked Via Weak Passwords

Cybercriminals have compromised tens of thousands of Fortinet firewalls and VPNs globally, exploiting weak password security rather than unknown vulnerabilities. The ongoing campaign, dubbed FortiBleed, involves scanning for exposed devices and using lists of leaked credentials to gain access. Once inside, attackers monitor traffic and steal further credentials, creating a self-feeding cycle of compromise. Major companies like Accenture and Oracle are reportedly affected, highlighting a critical need for better cybersecurity practices.