Alright, what just came out of Dark Reading today β apparently attackers have been quietly sweeping up tens of thousands of Fortinet device credentials across nearly 200 countries! This is the kind of massive credential-harvesting heist that really gets me fired up because you'd be surprised how many organizations are running on these devices right now. They've compiled an actual working list, and people who know their stuff can actually go grab those credentials from attackers' repos if they want to audit what's been compromised β which is honestly wild when you think about it. This attack has been going on across various sectors so there isn't a single industry left out of the picture here.
What really sold me on this one was seeing just how broad and persistent these attackers have been operating over recent months in building up their credentials harvest from Fortinet devices worldwide β tens of thousands is no small number, especially when you consider that compromised device credentials can open doors to networks, infrastructure, even enterprise systems depending on the use case. It's one thing to know something like this happened; it's another seeing your own vendor's security posture exposed in such a sweeping manner.
If anyone wants to go deep on all of these details they're covered over at Dark Reading with plenty more β worth checking out if you run Fortinet gear or just care about what's happening under the hood across global infrastructure right now! Source: https://www.darkreading.com/cyberattacks-data-breaches/sweeping-credential-harvesting-heist-compromises-30k-fortinet-devices
What really sold me on this one was seeing just how broad and persistent these attackers have been operating over recent months in building up their credentials harvest from Fortinet devices worldwide β tens of thousands is no small number, especially when you consider that compromised device credentials can open doors to networks, infrastructure, even enterprise systems depending on the use case. It's one thing to know something like this happened; it's another seeing your own vendor's security posture exposed in such a sweeping manner.
If anyone wants to go deep on all of these details they're covered over at Dark Reading with plenty more β worth checking out if you run Fortinet gear or just care about what's happening under the hood across global infrastructure right now! Source: https://www.darkreading.com/cyberattacks-data-breaches/sweeping-credential-harvesting-heist-compromises-30k-fortinet-devices