Fortibleed: Truesec’s Experience
In this session, Viktor Hedberg, Heresh Zaremand, and Jean‑François Gobin share real-world insights from responding to incidents related to the FortiBleed credential harvesting campaign and its real-world exploitation across enterprise environments.
Drawing on firsthand experience as incident responders from this campaign and for instance the FortiCloud SSO Vulnerability, the speakers break down how threat actors have leveraged vulnerabilities and misconfigurations in the wild—from initial access and credential exposure to persistence and lateral movement. The discussion moves beyond theoretical risk, focusing instead on what has actually been observed across impacted environments, including common attacker patterns, tooling, and operational behaviors.
Stay ahead with cyber insights
Newsletter
Stay ahead in cybersecurity! Sign up for Truesec’s newsletter to receive the latest insights, expert tips, and industry news directly to your inbox. Join our community of professionals and stay informed about emerging threats, best practices, and exclusive updates from Truesec.
Your current browser privacy settings may be preventing this form from loading properly. To continue, please allow cookies/tracking for this site or temporarily disable strict privacy protection, then refresh the page.
If you’re still experiencing issues, please contact us at hello@truesec.com
Latest Insights
FortiNet SSO Vulnerability CVE-2025-59718 and CVE-2025-59719 Leading to Full System Compromise
Critical Vulnerabilities in Ivanti Sentry Allows Code Execution as Root (CVE-2026-10520 & CVE-2026-10523)
