THE UK's National Cyber Security Centre (NCSC) has issued urgent guidance for Fortinet customers affected by a credential theft campaign dubbed "FortiBleed," which exposed about 75,000 compromised usernames, email addresses, and plaintext passwords from global organizations. The breach is linked to roughly half of all internet-accessible Fortinet firewalls, impacting clients across 194 countries.
Following the incident, the NCSC recommends that affected users check their systems with tools from Hudson Rock or SOCRadar, isolate compromised devices, report incidents, and strengthen security measures by updating systems and implementing multi-factor authentication.