{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreih57yzcwg3dovx3igs45emnvebzemzg6qkutcotes6vwv5hcekoga",
    "uri": "at://did:plc:ghkvexthfanuyq7fb5veq6tw/app.bsky.feed.post/3mpnt6jry7yo2"
  },
  "coverImage": {
    "$type": "blob",
    "ref": {
      "$link": "bafkreihvhch4qautprx3brxcydkuf7r7s6whewbnfsf535ajqourpovloa"
    },
    "mimeType": "image/jpeg",
    "size": 276823
  },
  "path": "/2026/07/fortibleed-credential-theft-linked-to.html",
  "publishedAt": "2026-07-02T08:00:49.000Z",
  "site": "https://thehackernews.com",
  "textContent": "The recently discovered financially-motivated FortiBleed campaign has been attributed to INC and Lynx ransomware operations, indicating that the verified, stolen credentials were intended for follow-on intrusions.\n\n\"An operator tied to FortiBleed's infrastructure was found actively working negotiation panels for both groups, tying mass FortiGate credential theft directly to ransomware deployment",
  "title": "FortiBleed Credential Theft Linked to INC and Lynx Ransomware Operations"
}