FortiBleed Credential Theft Linked to INC and Lynx Ransomware Operations
VPN Central [Unofficial]
July 3, 2026
SOCRadar says the FortiBleed credential-harvesting campaign is now linked to INC Ransom and Lynx ransomware operations, raising the risk for organizations using exposed FortiGate firewalls and VPN portals. The company’s FortiBleed ransomware link report says an operator tied to FortiBleed infrastructure was found working negotiation panels for both ransomware brands. SOCRadar also reported victim overlap […]
The post FortiBleed Credential Theft Linked to INC and Lynx Ransomware Operations appeared first on VPN Central.
Discussion in the ATmosphere