Major Fortinet Firewall Breach Exposes Tens of Thousands of Corporate Networks
Security researchers are warning of a significant cyberattack campaign targeting corporate networks protected by Fortinet firewalls and VPNs.
According to reports, an alleged Russian-speaking group of cybercriminals has been compromising organizations that rely on Fortinet's security hardware. The attackers are reportedly exploiting previously known passwords to breach the devices, which serve as critical network perimeters for businesses around the world.
The scale of the campaign is described as substantial, with tens of thousands of affected devices potentially compromised. Major companies across multiple industries appear to be among the targets.
Security experts recommend that organizations using Fortinet products immediately:
- Verify that all default or known passwords have been changed
- Review access logs for suspicious activity
- Ensure firmware is up to date
- Implement multi-factor authentication where possible
This incident highlights the ongoing risks associated with credential-based attacks, particularly when organizations fail to rotate default or previously exposed passwords on critical security infrastructure.