
Hackers Deploy FortigateSniffer Tool to Harvest Credentials From Compromised Firewalls
A financially motivated threat actor has compromised hundreds of thousands of FortiGate firewalls globally, weaponizing them with a custom Golang-based tool called FortigateSniffer. Dubbed “FortiBleed” by SOCRadar’s Threat Research Unit (STRU), this massive credential-harvesting campaign has silently siphoned over 110 million credentials since February 2026, including confirmed data exfiltration from a NATO-aligned defense contractor. At […]
The post Hackers Deploy FortigateSniffer Tool to Harvest Credentials From Compromised Firewalls appeared first on Cyber Security News.