# [LOW] FortiBleed – 70,000+ Fortinet Firewalls Compromised in Massive Exploitation Attack **Source:** Cyber Security News **Published:** 2026-06-17 **Article:** https://cybersecuritynews.com/fortibleed-fortinet-firewalls-compromised/ ## Threat Profile An exhaustive cyber espionage campaign now dubbed “FortiBleed” has silently compromised over 73,932 unique Fortinet firewall URLs across 194 countries. Originally uncovered by security researcher Volodymyr “Bob” Diachenko and subsequently analyzed by Hudson Rock, this dataset reveals a highly automated, industrial-scale operation targeting FortiGate devices and SSL VPN gateways on an unprecedented global scale. Threat actors executed an […] The post FortiBleed ̵… ## Indicators of Compromise (high-fidelity only) - _No high-fidelity IOCs in the RSS summary._ If the source publishes a technical write-up with defanged IOCs in the body, those would be picked up automatically on the next pipeline run. ## MITRE ATT&CK Techniques - _Narrative-keyword inference returned no technique mappings; review article for ATT&CK relevance manually._ ## Kill chain phases observed _(none detected from narrative keywords)_ ## Recommended hunts _No actionable hunts can be derived from the RSS summary alone. The article may still warrant manual review — open the source link for actor attribution, IOCs in the body, and TTP detail._ ## Why this matters Severity classified as **LOW** based on: 0 use case(s) fired, 0 technique(s) inferred. Read the full article for actor attribution, tooling details, and any defanged IOCs in the body that aren't visible in the RSS summary.