FortiBleed Exposed Domain Lookup
FortiBleed is a credential leak, not a new Fortinet bug. A criminal crew scanned the internet for Fortinet SSL VPN and firewall logins, then checked them against passwords pulled from infostealer malware and older breaches. The ones that worked were kept, and the SSL VPN hashes were cracked offline on a GPU cluster. What came out is a dataset of working VPN and admin credentials for roughly 73,932 Fortinet firewalls across 194 countries.
This page lets you search the affected domains and see where they cluster. If your organization turns up here, treat the device as already compromised. Rotate every VPN and admin password, switch on multi-factor authentication, and pull the management interface off the public internet.