FortiBleed Attack Compromises 75,000 Fortinet Firewalls, Exposing Corporate Networks Globally
Environ 75 000 pare-feu Fortinet ont vu leurs identifiants de connexion volés puis vérifiés un par un, des FortiGate, ces boîtiers qui filtrent l'accès au réseau des entreprises et servent très souvent de porte d'entrée VPN pour les salariés en télétravail. Baptisée FortiBleed par les chercheurs qui l'ont mise au jour, la campagne couvre 194 pays et plus de 21 000 domaines, soit à peu près la moitié des pare-feu Fortinet exposés sur Internet à l'heure actuelle. Parmi les orga
A widespread cyberattack, dubbed FortiBleed, has compromised approximately 75,000 Fortinet firewalls worldwide, stealing login credentials. These FortiGate devices, crucial for network security and VPN access, were targeted across 194 countries, affecting over 21,000 domains. Major organizations like Samsung, Siemens, and FedEx were among the victims. Attackers intercepted SSL VPN authentication, cracked passwords, and gained access to corporate networks. At least four organizations experienced complete compromise, with attackers moving laterally within their systems. The attack is attributed to a Russian-speaking cybercriminal group. Fortinet, however, downplays the incident, suggesting it involves recycled data from past breaches rather than a new vulnerability.
This massive cybersecurity breach highlights critical vulnerabilities in network security infrastructure and the sophisticated methods used by cybercriminals to infiltrate corporate systems.
📌 Kaynak
Bu haber XML kaynağından derlenmiştir. Tamamı için orijinal habere gidin.
Orijinal haberi oku →