{"id":86252,"date":"2026-06-19T22:06:56","date_gmt":"2026-06-19T21:06:56","guid":{"rendered":"https:\/\/www.n-able.com\/?p=86252"},"modified":"2026-06-19T22:27:28","modified_gmt":"2026-06-19T21:27:28","slug":"fortibleed-what-we-know-and-how-n-able-is-responding","status":"publish","type":"post","link":"https:\/\/www.n-able.com\/es\/blog\/fortibleed-what-we-know-and-how-n-able-is-responding","title":{"rendered":"Fortibleed: What we know and how N&#8209;able is responding"},"content":{"rendered":"<h2>Bottom line<\/h2>\n<p>N&#8209;able\u2019s <a href=\"\/products\/adlumin\">Adlumin MDR<\/a> and Nightscope Threat Research teams have reviewed publicly available indicators related to a large list of potentially compromised Fortinet devices, known widely as the <a href=\"https:\/\/www.linkedin.com\/posts\/vdyachenko_massive-fortinetfortigate-bruteforceactive-share-7471222470814072832-X4zm\/\" target=\"_blank\">Fortibleed<\/a> list.<\/p>\n<p>Using those indicators and Adlumin investigation tools, we performed reviews of our customer and partner telemetry to identify evidence of possible impact. <strong>Our MDR team has begun outreach to customers and partners based on findings that emerge from our analysis of available data.<\/strong> We will continue to monitor and engage, providing guidance and support to those we believe were impacted.<\/p>\n<p>Additionally, we have implemented detection logic to monitor for further activity that might match patterns of behavior indicative of malicious activity.<\/p>\n<p>We will continue to follow the situation for any further developments to these findings.<\/p>\n<h2>Background<\/h2>\n<p>Security researchers recently identified a directory open to the public internet appearing to contain a vast number of Fortinet device credentials. The <a href=\"https:\/\/www.linkedin.com\/posts\/vdyachenko_executive-summary-based-on-my-investigation-share-7472221359629185024-ISun\/\" target=\"_blank\">researchers assert<\/a> that the bad actors performed mass scans and brute force login attempts against Fortinet devices. <a href=\"https:\/\/www.linkedin.com\/posts\/vdyachenko_fortinetbleed-sophos-mssql-share-7473675250141167616-VOL2\/\" target=\"_blank\">According to these researchers<\/a>, after a successful compromise using that mass scan and brute force, the adversaries captured hashed Fortinet credentials by listening in on network traffic. These hashed credentials were then \u00abcracked\u00bb to reveal the plaintext login details. This would allow unauthorized access to SSL VPN using valid account credentials.<\/p>\n<p>Some researchers say, <a href=\"https:\/\/ransomnews.com\/fortibleed-fortigate-bruteforce-operation\/\" target=\"_blank\">more than 70,000 Fortinet devices<\/a> may have been affected by this campaign.<\/p>\n<h2>Best practices<\/h2>\n<p>Although there is no definitive evidence that any disclosed Fortinet vulnerability was exploited for this campaign, we highly recommend that organizations <strong>apply security fixes to network edge devices<\/strong> in a timely manner.<\/p>\n<p>Similarly, best practices call for all default <strong>remote management and administration credentials to be changed<\/strong> before network devices are put into use.<\/p>\n<p>If supported on your network access control or VPN technology, we also recommend implementing device posture assessments, endpoint compliance checks, or zero trust network access controls to ensure only known and authorized endpoints can access your internal network resources.<\/p>\n<p>Additionally, <a href=\"https:\/\/www.cisa.gov\/news-events\/alerts\/2026\/06\/18\/cisa-urges-hardening-fortinet-devices-after-reports-credential-exposure\" target=\"_blank\">an advisory<\/a> around hardening best practices for Fortinet devices has been published by the U.S. Cybersecurity &#038; Infrastructure Security Agency (CISA) in response to the Fortibleed events. <\/p>\n","protected":false},"excerpt":{"rendered":"<p>Bottom line N&#8209;able\u2019s Adlumin MDR and Nightscope Threat Research teams have reviewed publicly available indicators related to a large list of potentially compromised Fortinet devices, known widely as the Fortibleed&#8230;<\/p>\n","protected":false},"author":24,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"inline_featured_image":false,"footnotes":""},"class_list":["post-86252","post","type-post","status-publish","format-standard","hentry","topic-security"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v27.6 (Yoast SEO v27.6) - https:\/\/yoast.com\/product\/yoast-seo-premium-wordpress\/ -->\n<title>Fortibleed: What we know and how N-able is responding - N-able<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.n-able.com\/es\/blog\/fortibleed-what-we-know-and-how-n-able-is-responding\" \/>\n<meta property=\"og:locale\" content=\"es_ES\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Fortibleed: What we know and how N-able is responding - N-able\" \/>\n<meta property=\"og:description\" content=\"Bottom line N&#8209;able\u2019s Adlumin MDR and Nightscope Threat Research teams have reviewed publicly available indicators related to a large list of potentially compromised Fortinet devices, known widely as the Fortibleed...\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.n-able.com\/es\/blog\/fortibleed-what-we-know-and-how-n-able-is-responding\" \/>\n<meta property=\"og:site_name\" content=\"N-able\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/NableMSP\" \/>\n<meta property=\"article:published_time\" content=\"2026-06-19T21:06:56+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2026-06-19T21:27:28+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.n-able.com\/wp-content\/uploads\/2021\/03\/share-image.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1200\" \/>\n\t<meta property=\"og:image:height\" content=\"630\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"N-able\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@Nable\" \/>\n<meta name=\"twitter:site\" content=\"@Nable\" \/>\n<meta name=\"twitter:label1\" content=\"Escrito por\" \/>\n\t<meta name=\"twitter:data1\" content=\"N-able\" \/>\n\t<meta name=\"twitter:label2\" content=\"Tiempo de lectura\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutos\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.n-able.com\\\/es\\\/blog\\\/fortibleed-what-we-know-and-how-n-able-is-responding#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.n-able.com\\\/es\\\/blog\\\/fortibleed-what-we-know-and-how-n-able-is-responding\"},\"author\":{\"name\":\"N-able\",\"@id\":\"https:\\\/\\\/www.n-able.com\\\/es#\\\/schema\\\/person\\\/f46a000e389b6d02bd4b3866e7828a7b\"},\"headline\":\"Fortibleed: What we know and how N&#8209;able is responding\",\"datePublished\":\"2026-06-19T22:06:56+01:00\",\"dateModified\":\"2026-06-19T21:27:28+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.n-able.com\\\/es\\\/blog\\\/fortibleed-what-we-know-and-how-n-able-is-responding\"},\"wordCount\":364,\"publisher\":{\"@id\":\"https:\\\/\\\/www.n-able.com\\\/es#organization\"},\"inLanguage\":\"es\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.n-able.com\\\/es\\\/blog\\\/fortibleed-what-we-know-and-how-n-able-is-responding\",\"url\":\"https:\\\/\\\/www.n-able.com\\\/es\\\/blog\\\/fortibleed-what-we-know-and-how-n-able-is-responding\",\"name\":\"Fortibleed: What we know and how N-able is responding - N-able\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.n-able.com\\\/es#website\"},\"datePublished\":\"2026-06-19T22:06:56+01:00\",\"dateModified\":\"2026-06-19T21:27:28+00:00\",\"inLanguage\":\"es\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.n-able.com\\\/es\\\/blog\\\/fortibleed-what-we-know-and-how-n-able-is-responding\"]}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.n-able.com\\\/es#website\",\"url\":\"https:\\\/\\\/www.n-able.com\\\/es\",\"name\":\"N-able\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.n-able.com\\\/es#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.n-able.com\\\/es?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"es\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.n-able.com\\\/es#organization\",\"name\":\"N-able\",\"url\":\"https:\\\/\\\/www.n-able.com\\\/es\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"es\",\"@id\":\"https:\\\/\\\/www.n-able.com\\\/es#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.n-able.com\\\/wp-content\\\/uploads\\\/2021\\\/02\\\/logo-n-able-vertical-dark.svg\",\"contentUrl\":\"https:\\\/\\\/www.n-able.com\\\/wp-content\\\/uploads\\\/2021\\\/02\\\/logo-n-able-vertical-dark.svg\",\"width\":\"1024\",\"height\":\"1024\",\"caption\":\"N-able\"},\"image\":{\"@id\":\"https:\\\/\\\/www.n-able.com\\\/es#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/www.facebook.com\\\/NableMSP\",\"https:\\\/\\\/x.com\\\/Nable\",\"https:\\\/\\\/www.linkedin.com\\\/company\\\/n-able\",\"https:\\\/\\\/www.youtube.com\\\/channel\\\/UClnp77HHg4aME-S-3fWQhFw\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.n-able.com\\\/es#\\\/schema\\\/person\\\/f46a000e389b6d02bd4b3866e7828a7b\",\"name\":\"N-able\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"es\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/e9c468b7c98137ecdd5508befa660c205a7978133257080a37fb0b1362d53411?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/e9c468b7c98137ecdd5508befa660c205a7978133257080a37fb0b1362d53411?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/e9c468b7c98137ecdd5508befa660c205a7978133257080a37fb0b1362d53411?s=96&d=mm&r=g\",\"caption\":\"N-able\"}}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Fortibleed: What we know and how N-able is responding - N-able","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.n-able.com\/es\/blog\/fortibleed-what-we-know-and-how-n-able-is-responding","og_locale":"es_ES","og_type":"article","og_title":"Fortibleed: What we know and how N-able is responding - N-able","og_description":"Bottom line N&#8209;able\u2019s Adlumin MDR and Nightscope Threat Research teams have reviewed publicly available indicators related to a large list of potentially compromised Fortinet devices, known widely as the Fortibleed...","og_url":"https:\/\/www.n-able.com\/es\/blog\/fortibleed-what-we-know-and-how-n-able-is-responding","og_site_name":"N-able","article_publisher":"https:\/\/www.facebook.com\/NableMSP","article_published_time":"2026-06-19T21:06:56+00:00","article_modified_time":"2026-06-19T21:27:28+00:00","og_image":[{"width":1200,"height":630,"url":"https:\/\/www.n-able.com\/wp-content\/uploads\/2021\/03\/share-image.jpg","type":"image\/jpeg"}],"author":"N-able","twitter_card":"summary_large_image","twitter_creator":"@Nable","twitter_site":"@Nable","twitter_misc":{"Escrito por":"N-able","Tiempo de lectura":"2 minutos"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.n-able.com\/es\/blog\/fortibleed-what-we-know-and-how-n-able-is-responding#article","isPartOf":{"@id":"https:\/\/www.n-able.com\/es\/blog\/fortibleed-what-we-know-and-how-n-able-is-responding"},"author":{"name":"N-able","@id":"https:\/\/www.n-able.com\/es#\/schema\/person\/f46a000e389b6d02bd4b3866e7828a7b"},"headline":"Fortibleed: What we know and how N&#8209;able is responding","datePublished":"2026-06-19T22:06:56+01:00","dateModified":"2026-06-19T21:27:28+00:00","mainEntityOfPage":{"@id":"https:\/\/www.n-able.com\/es\/blog\/fortibleed-what-we-know-and-how-n-able-is-responding"},"wordCount":364,"publisher":{"@id":"https:\/\/www.n-able.com\/es#organization"},"inLanguage":"es"},{"@type":"WebPage","@id":"https:\/\/www.n-able.com\/es\/blog\/fortibleed-what-we-know-and-how-n-able-is-responding","url":"https:\/\/www.n-able.com\/es\/blog\/fortibleed-what-we-know-and-how-n-able-is-responding","name":"Fortibleed: What we know and how N-able is responding - N-able","isPartOf":{"@id":"https:\/\/www.n-able.com\/es#website"},"datePublished":"2026-06-19T22:06:56+01:00","dateModified":"2026-06-19T21:27:28+00:00","inLanguage":"es","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.n-able.com\/es\/blog\/fortibleed-what-we-know-and-how-n-able-is-responding"]}]},{"@type":"WebSite","@id":"https:\/\/www.n-able.com\/es#website","url":"https:\/\/www.n-able.com\/es","name":"N-able","description":"","publisher":{"@id":"https:\/\/www.n-able.com\/es#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.n-able.com\/es?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"es"},{"@type":"Organization","@id":"https:\/\/www.n-able.com\/es#organization","name":"N-able","url":"https:\/\/www.n-able.com\/es","logo":{"@type":"ImageObject","inLanguage":"es","@id":"https:\/\/www.n-able.com\/es#\/schema\/logo\/image\/","url":"https:\/\/www.n-able.com\/wp-content\/uploads\/2021\/02\/logo-n-able-vertical-dark.svg","contentUrl":"https:\/\/www.n-able.com\/wp-content\/uploads\/2021\/02\/logo-n-able-vertical-dark.svg","width":"1024","height":"1024","caption":"N-able"},"image":{"@id":"https:\/\/www.n-able.com\/es#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/NableMSP","https:\/\/x.com\/Nable","https:\/\/www.linkedin.com\/company\/n-able","https:\/\/www.youtube.com\/channel\/UClnp77HHg4aME-S-3fWQhFw"]},{"@type":"Person","@id":"https:\/\/www.n-able.com\/es#\/schema\/person\/f46a000e389b6d02bd4b3866e7828a7b","name":"N-able","image":{"@type":"ImageObject","inLanguage":"es","@id":"https:\/\/secure.gravatar.com\/avatar\/e9c468b7c98137ecdd5508befa660c205a7978133257080a37fb0b1362d53411?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/e9c468b7c98137ecdd5508befa660c205a7978133257080a37fb0b1362d53411?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/e9c468b7c98137ecdd5508befa660c205a7978133257080a37fb0b1362d53411?s=96&d=mm&r=g","caption":"N-able"}}]}},"_links":{"self":[{"href":"https:\/\/www.n-able.com\/es\/wp-json\/wp\/v2\/posts\/86252","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.n-able.com\/es\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.n-able.com\/es\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.n-able.com\/es\/wp-json\/wp\/v2\/users\/24"}],"replies":[{"embeddable":true,"href":"https:\/\/www.n-able.com\/es\/wp-json\/wp\/v2\/comments?post=86252"}],"version-history":[{"count":0,"href":"https:\/\/www.n-able.com\/es\/wp-json\/wp\/v2\/posts\/86252\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.n-able.com\/es\/wp-json\/wp\/v2\/media?parent=86252"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}