
Cyber SecurityUK NCSC
Alert: NCSC issues advice following global targeting of Fortinet firewalls and VPN gateways
Fortinet firewalls and VPN gateways have been targeted as part of a global campaign, with some indications of potential impact in the UK.
A database of credentials has been leaked by a threat actor following brute-force, dictionary, and credential stuffing attempts against internet-facing FortiGate and VPN portals.
Credential stuffing is a method where attackers use passwords stolen from one web service to try to access accounts on other services, taking advantage of any reuse of username and password combinations.
Source: UK NCSC (Cyber) (18 June 2026)







