Russian-speaking initial-access brokers have attacked at least 430,000 FortiGate firewalls with FortiBleed and harvested login credentials to gain access to corporate networks.
Attackers have collected approximately 75,000 administrator passwords from Fortinet firewalls globally, easily cracked them using outdated hashing methods, and now have persistent access to affected corporate networks.