FortiBleed

FortiGate · FortiVPN database 73,932+ firewalls tracked schedule Updated continuously

Detect Fortinet VPN credential exposure from infostealer malware campaigns. Enter a domain, IP address, or CIDR range.

dns Firewall URLs

73,932⁺

language Countries

194

domain Domains

21,387

storage Devices

437K⁺

campaign

Active Global Campaign

73,932+ Fortinet firewalls compromised globally. Automated operation targeting FortiGate firewalls and VPN gateways worldwide. VantaPrism publishes this intelligence to help organizations secure ethical disclosure before wider distribution.

help Frequently Asked Questions

What is FortiBleed? expand_more

FortiBleed refers to a large-scale exposure of Fortinet FortiGate firewall and VPN gateway credentials harvested by infostealer malware. The FortiBleed Free Check lets you test whether a domain, IP, or CIDR range appears in this breach data.

How do I check if my Fortinet VPN is compromised? expand_more

Enter your domain, IP address, or CIDR range into the FortiBleed Free Check scanner above. It cross-references global infostealer telemetry and instantly reports whether exposed Fortinet VPN credentials were found for that target.

Is the FortiBleed exposure check free? expand_more

Yes. The FortiBleed Free Check is completely free and requires no account or signup. You can scan a domain, IP, or CIDR range and view exposure results immediately.

What can I scan with FortiBleed Free Check? expand_more

You can scan a domain (example.com), an IPv4 or IPv6 address, or a CIDR range (such as 10.0.0.0/24) to check for exposed Fortinet FortiGate VPN credentials.