FortiBleed – 75k Fortinet firewalls have admin passwords cracked
4 hours ago
- #Fortinet
- #Security Breach
- #Firewall Vulnerability
- Around 75,000 Fortinet firewalls have had their admin passwords exposed in plain text.
- The data appears recent and legitimate, with most devices still online and different from a previous leak.
- Config exports likely revealed passwords, and many devices use vulnerable SHA-256 with Salt storage.
- Attackers can remotely access firewalls, change settings, and create backdoor users.
- The cause is unclear; it may involve known CVEs or a new vulnerability.
- Organizations should check if impacted, rotate admin credentials, upgrade firmware, and avoid exposing management interfaces to the internet.