THE UK’s National Cyber Security Centre (NCSC) has issued an alert regarding a global campaign targeting Fortinet firewalls and VPN gateways. Organizations using these services are advised to investigate potential impacts after a database of credentials was leaked due to credential stuffing attacks. Affected organizations should utilize the Hudson Rock FortiBleed Checker to assess their vulnerability, confirm ownership of devices, and monitor for unusual network activity.
If compromised, it is recommended to isolate the device, report the incident, and implement security measures such as factory resets and multi-factor authentication. The alert emphasizes prioritizing security to prevent further breaches.