Security researchers have identified a large-scale attack campaign targeting Fortinet FortiGate devices using custom sniffer tools to harvest authentication credentials from compromised firewalls.
SOCRadar's analysis of the FortiBleed campaign reveals attackers deployed specialized packet sniffing software on vulnerable FortiGate appliances to intercept and extract login credentials and other authentication secrets.
The campaign demonstrates a sophisticated approach to lateral movement, where compromised firewalls become staging points for credential theft. By deploying custom sniffers directly on network infrastructure, attackers gain access to plaintext authentication data passing through the device.
FortiGate devices are widely deployed across enterprise networks as primary security perimeters, making them high-value targets. The FortiBleed campaign appears designed for large-scale reconnaissance, harvesting credentials that could enable further network penetration.
Organizations running FortiGate appliances should verify patch levels immediately, monitor for suspicious process execution on devices, and review authentication logs for signs of compromise. The attack highlights the critical importance of securing administrative access to network infrastructure and implementing network segmentation to limit credential exposure.
Law enforcement budgets for investigating child exploitation are shrinking even as artificial intelligence floods the internet with illegal imagery, creating a widening gap between cases and resources.
Scammers are using artificial intelligence to create fraudulent auto loan documents, adding pressure to US lenders already struggling with delinquency rates at multiyear highs. The scheme exploits AI's ability to generate convincing forgeries at scale.
Security vulnerability disclosures are becoming routine rather than noteworthy events as organizations scale their disclosure practices. The shift reflects maturation in how the tech industry handles security issues.
Tesla is defending its Full Self-Driving system after a Model 3 crashed into a Texas home, killing a 76-year-old woman. The company claims the driver manually overrode the system.