CISA warned Fortinet customers to secure their devices after the FortiBleed leak exposed credentials for nearly 74,000 firewalls and VPN gateways worldwide. The leak is linked to attacks on internet-accessible Fortinet devices and includes data that could help threat actors plan future intrusions. #CISA #Fortinet #FortiBleed #FortiGate
Keypoints
- CISA urged Fortinet customers to secure exposed devices immediately.
- FortiBleed leaked credentials for about 74,000 Fortinet firewalls and VPNs.
- Threat actors used compromised credentials against internet-accessible Fortinet devices worldwide.
- The exposed data included usernames, email addresses, passwords, and organization details.
- CISA advised resetting passwords, enabling phishing-resistant MFA, and restricting public management access.