An ecrime group has somehow gained access to 75k Fortinet firewall devices - dubbed Fortibleed

Blog https://www.infostealers.com/article/fortibleed-75000-fortinet-firewalls-compromised-global-enterprises-exposed-claim-your-ethical-disclosure/

Check if your domain is impacted: https://www.hudsonrock.com/fortinet

I’ve verified the data is real. They’ve been dumping the Fortinet config - not sure how yet - and then cracking the passwords it appears. Data is being resold online. #fortibleed

I just finished a 16,000 word whitepaper on conficker incident response in 2026 because we’ve gotten that many IR activations and I really didn’t think this is where I’d be

Mastodon 4.6 released today. It lets me force 2FA on accounts.

Also, heads up, I am going to force 2FA on accounts.

Note: this is only applicable to: infosec.exchange
infosec.space
ioc.exchange
convo.casa

Lol, the #FortiBleed data was found in an opendir on a webserver 🤣 truly GenAI is going to take over 😜

"They accidentally left an open directory with artefacts, connection strings, tooling, scripts and data online. Analytics obtained via their cron jobs, bash histories, logs etc,"

https://www.bleepingcomputer.com/news/security/fortibleed-leak-exposes-fortinet-vpn-credentials-for-73-000-devices/

When LLMs do scientific literature reviews they attribute women's work to hallucinated male researchers and insist that men are more heavily cited and/or more influential even when citation counts show the opposite: https://arxiv.org/abs/2508.02740

Ireland trialed a basic income for artists. 🇮🇪 💸 🎤 🎨

Research showed that it boosted the economy. 🫰 🏦

They've now made it a permanent scheme. 🔏

Catch up UK! 👀 🇬🇧

https://www.positive.news/economics/imagination-and-creation-are-products-of-time-and-space/