News Grower

Independent coverage of AI, startups, and technology.

Language English Russian
Ars Technica Jun 17, 2026 at 19:54 Big Tech Rising Hot

Massive breach spills credentials for thousands of sensitive networks

The affected include Oracle, Lenovo, FedEx, a NATO contractor, and Fortinet.

Signal weather

Rising

Momentum is building quickly, so this card is a good early entry point into the topic.

By Dan Goodin Original source
Massive breach spills credentials for thousands of sensitive networks

Researchers have uncovered a massive breach of Fortinet firewalls that has given Russian-speaking attackers near-unrestricted access to some of the world’s largest and most powerful organizations, including Oracle, Chevron, Lenovo, Federal Express, a NATO defense contractor, and Fortinet itself. Nearly 74,000 Fortinet devices from more than 21,000 IP addresses in 194 countries have been compromised and their plaintext credentials exposed online, Bob Diachenko, a security researcher and head of SecurityDiscovery.com, said online and in an interview. He said he found the data after gaining access to the attackers’ command-and-control server and other infrastructure. The exposed data also included the industry, revenue, and employee count for each compromised organization. Exceptional scale, poor opsec Independent researcher Kevin Beaumont reported that “almost all” of the compromised devices remained online as of Wednesday morning. He went on to say that he has confirmed with multiple organizations found in the attackers’ logs that the credentials are real and current. In many cases, once the threat actors compromised the devices, they went on to access affected organizations’ centralized authentication systems, such as Radius servers and Microsoft Active Directory. The number of compromised devices comprises roughly half of all Internet-facing Fortinet firewalls, based on polling from Shodan. Read full article Comments

Read the full article

Stay on the signal

Follow Massive breach spills credentials for thousands of sensitive networks

Follow this story beyond a single article: new follow-ups, adjacent sources, and the evolving storyline.

We send a confirmation link first, then only meaningful digests.

Story map

Understand this topic fast

A quick entry into the story: why it matters now, who is involved, and where to go next for context.

Why it matters now

Fresh coverage with immediate momentum.
There are already 6 connected articles in the same storyline to continue from here.
The story keeps orbiting around Affected Include, Credentials, and FedEx, so the entity pages are the fastest way to build context.
Ars Technica already has 4 follow-up stories on the same theme.

Topic constellation

Open the live map for this story

See which entities, story threads, sources, and follow-up articles shape this story right now.

Click nodes to continue

Entity Cluster Article Hub Source

Entity pages

Affected Include Credentials FedEx Fortinet. Ars Technica Lenovo Massive

Story threads

Credentials

Последние материалы и связанный контекст по теме Credentials.

FedEx

Latest coverage and related links about FedEx.

FedEx

Последние материалы и связанный контекст по теме FedEx.

Story timeline

Continue with this story

A short sequence of events and follow-up stories to understand the arc quickly.

Jun 17, 2026 at 19:54 Ars Technica

Massive breach spills credentials for thousands of sensitive networks

The affected include Oracle, Lenovo, FedEx, a NATO contractor, and Fortinet.
Jun 3, 2026 at 17:30 TechCrunch

Ultrahuman says hackers accessed customers’ wellness data via internal tool

The breach at wearable ring maker Ultrahuman stemmed from credentials stolen from a malware-infected employee laptop.
May 19, 2026 at 18:27 Ars Technica

In stunning display of stupid, secret CISA credentials found in public GitHub repo

SSH keys, plaintext passwords, other sensitive data had been up since November 2025.
May 4, 2026 at 14:13 TechCrunch

Amazon opens up its global logistics network to all businesses

The new service, called Amazon Supply Chain Services, pits the e-commerce giant directly against UPS and FedEx.
Apr 27, 2026 at 21:04 Ars Technica

Open source package with 1 million monthly downloads stole user credentials

If you're one of millions using element-data, it's time to check for compromise.
Apr 20, 2026 at 17:58 Hacker News

Anonymous credentials: an illustrated primer (Part 2)

Comments

How reliable this looks

Signal and trust for Ars Technica

This source works at a rapid pace: 100% of recent stories land in the hot window, and 0% carry visible search signal.

Trusted

Reliability

92

Freshness

100

Sources in storyline

3

Related articles

More stories that share tags, source, or category context.

SecurityLab Jun 12, 2026 at 05:35 Cybersecurity
Rising Hot

0day в Oracle PeopleSoft позволила хакерам обчистить более сотни организаций

Компания предлагает срочно закрывать серверы от хакеров вручную, потому что нормального исправления ещё нет.

Signal weather

Momentum is building quickly, so this card is a good early entry point into the topic.

Why now

Fresh coverage with immediate momentum.

0day Oracle Oracle PeopleSoft Peoplesoft
Read article Follow story
securitylab.ru
TechCrunch Jun 11, 2026 at 20:27 Startups
Rising Hot

Oracle warns of security bug that hackers abused to breach 100+ companies

The tech giant warned of a security flaw that a cybercrime gang said it's exploiting as part of a mass-hacking campaign. Google said it notified more than 100 organizations that...

Signal weather

Momentum is building quickly, so this card is a good early entry point into the topic.

Why now

Fresh coverage with immediate momentum.

Cybercrime Gang Google Mass Hacking Mass Hacking Campaign
Read article Follow story
techcrunch.com

More from Ars Technica

Fresh reporting and follow-up coverage from the same newsroom.

Open source page