Security · 1h ago
FortiBleed Hackers Team Up with Ransomware Gangs, Exploit Nextcloud Zero-Day
Attackers who compromised thousands of Fortinet firewalls via the FortiBleed campaign are now collaborating with Inc. and Lynx ransomware gangs. They are also exploiting a Nextcloud zero-day vulnerability to deepen access. The monetization phase follows a breach that affected an estimated 10,000 devices.
Meridian48 take
The pivot to ransomware partnerships and additional zero-day exploitation suggests the FortiBleed operation is more organized and persistent than a typical mass-scanning campaign.
Read the full reporting
FortiBleed Actors Collaborating With Inc, Lynx Ransomware Gangs →
Dark Reading
fortibleedransomware-gangs