ShellCodeX
Tools • Events • News • Insights
ShellCodeX Intelligence Brief
CRITICAL Cybersecurity

FortiBleed campaign uses custom FortiGate sniffer to harvest credentials

Source headline: FortiBleed campaign used custom FortiGate sniffer to steal credentials

Threat level Critical
Signal strength 85/100
Source confidence 1 source
Published 3 hours ago

Intelligence Summary

SOCRadar reports that the FortiBleed campaign targeted Fortinet FortiGate appliances. The attackers deployed custom sniffers on compromised firewalls to intercept authentication secrets. Stolen credentials can enable further access to affected networks and services. This increases the risk of lateral movement, persistence, and additional compromise. FortiGate administrators should review for FortiBleed activity and urgently verify credential and firewall integrity.

Recommended Action

Prioritize immediate review, validate exposure, and patch or mitigate affected systems.

Topics

#credential-theft #fortinet #fortigate #fortibleed #sniffer #socradar
Original reporting BleepingComputer FortiBleed campaign used custom FortiGate sniffer to steal credentials
Open original source

Related Pulse Signals

View all signals
High · Cybersecurity WhatsApp users targeted via VBScript delivery in fake business document lures Critical · Cybersecurity JaredFromSubway MEV bot manipulated to steal about $15M in crypto High · Cybersecurity Meta Halts Employee Tracking After Internal Exposure of Sensitive Data High · Cybersecurity Meta lets employees view colleagues’ keystroke data from AI training tool