TechTarget and Informa Tech’s Digital Business Combine. Dark Reading Resource Library Black Hat News Omdia Cybersecurity Advertise NEWSLETTER SIGN-UP Cybersecurity Topics World The Edge DR Technology Events Resources THREAT INTELLIGENCE APPLICATION SECURITY CYBERATTACKS & DATA BREACHES ENDPOINT SECURITY NEWS 600+ FortiGate Devices Hacked by AI-Armed Amateur A Russian-speaking hacker used generative AI to compromise the FortiGate firewalls, targeting credentials and backups for possible follow-on ransomware attacks. Alexander Culafi,Senior News Writer, Dark Reading February 23, 2026 4 Min Read SOURCE: ELENABS VIA ALAMY STOCK PHOTO A financially motivated threat actor with little technical knowhow has used generative AI (GenAI) to breach hundreds of FortiGate instances at scale. While the this showcases how AI can scale workflows to support threat actors, it also indicates how GenAI is lowering of the technical bar for attackers. A Russian-speaking, financially motivated cyber threat actor used otherwise legitimate GenAI services to compromise more than 600 instances of Fortinet's FortiGate firewall, according to Amazon Web Services. Researchers detected the compromises between January and February, finding that devices originated from more than 55 countries, with concentrations noted across South Asia, Latin America, the Caribbean West Africa, Northern Europe, and beyond. Perhaps most notably, "no exploitation of FortiGate vulnerabilities was observed — instead, this campaign succeeded by exploiting exposed management ports and weak credentials with single-factor authentication, fundamental security gaps that AI helped an unsophisticated actor exploit at scale," according to a blog detailing the activity. Related:Iran's MuddyWater Targets Orgs With Fresh Malware as Tensions Mount LOADING... This is by no means an isolated incident: ReliaQuest previously reported that the vast majority of ransomware-as-a-service actors are using AI tools to help automate threat activity. Cyberattackers are also using modern AI technology to conduct reconnaissance, scale social engineering campaigns involving tactics like phishing, and much more. Unsophisticated Actor Compromises 600 FortiGate Instances What stands out about this recent campaign is how the threat actor appeared otherwise technically unsophisticated but leveraged GenAI services "throughout every phase of their operations," CJ Moses, CISO of Amazon Integrated Security, wrote. LOADING... "The threat actor in this campaign is not known to be associated with any advanced persistent threat (APT) group with state-sponsored resources," Moses explained. "They are likely a financially motivated individual or small group who, through AI augmentation, achieved an operational scale that would have previously required a significantly larger and more skilled team." Despite this lack of sophistication, the attacker managed to compromise multiple organizations' Active Directory environments and extract credentials and backup infrastructure. When the attacker met resistance, Moses said, "they simply moved on to softer targets rather than persisting, underscoring that their advantage lies in AI-augmented efficiency and scale, not in deeper technical skill." Related:Enigma Cipher Device Still Holds Secrets for Cyber Pros Amazon did not provide a list of commercial GenAI services the attacker used. However, some use cases were listed; the actor conducted network reconnaissance through custom-built tooling, created custom step-by-step exploitation instructions with a prioritized task tree, and coded multiple additional tools for various pre-and-post exploitation purposes. The primary initial access vector was exploiting commonly reused credentials on FortiGate management interfaces exposed to the Internet, found by scanning across ports 443, 8443, 10443, and 4443. The goal was to gain access to configuration files, which would contain everything from admin credentials to firewall policies and network topology. "The threat actor developed AI-assisted Python scripts to parse, decrypt, and organize these stolen configurations," Moses wrote. Once inside victim networks, the attacker specifically targeted Veeam Backup & Replication servers, which "represent high-value targets because they typically store elevated credentials for backup operations, and compromising backup infrastructure positions an attacker to destroy recovery capabilities before deploying ransomware." Other post-exploitation activities for domain compromise and lateral movement involved using established open source offensive tools. Related:Latin America's Cyber Maturity Lags Threat Landscape The Defender Component for GenAI-Powered Campaigns It is noteworthy that the threat actor conducted such a far-reaching campaign using GenAI tools, but while this speaks to the power of LLMs in threat operations, it may also work well as a cautionary tale to the enterprise defender based on how numerous organizations were breached. "This campaign succeeded through a combination of exposed management interfaces, weak credentials, and single-factor authentication — all fundamental security gaps that AI helped an unsophisticated actor exploit at scale," Moses said. "This underscores that strong security fundamentals are powerful defenses against AI-augmented threats." For organizations using FortiGate, AWS recommends ensuring management interfaces are not connected to the Internet, and if they are, to restrict access to known IP address ranges. Orgs should also change all default and common credentials across appliances, rotate all SSL-VPN user credentials, audit VPN connection logs for connections from unexpected geographic locations, and implement multifactor authentication (MFA) for all admin and VPN access. Organizations that may have been affected should monitor for unexpected DCSync operations, new scheduled tasks named to mimic legitimate Windows services, unauthorized access to backup credential stores, and new accounts with names designed to blend in with legitimate ones. AWS also provided a complete list of recommendations and indicators of compromise (IoCs). Fortinet did not immediately return a request for comment. Xcape’s Damon Small tells Dark Reading that the threat actor's end-to-end use of GenAI is somewhat novel but an approach that will almost certainly become more common with time. "The economy of scale afforded by AI bots makes it almost trivial to 'spray and pray' across a large population of potentially misconfigured devices," he says. About the Author Alexander Culafi Senior News Writer, Dark Reading Alex is an award-winning writer, journalist, and podcast host based in Boston. After cutting his teeth writing for independent gaming publications as a teenager, he graduated from Emerson College in 2016 with a Bachelor of Science in journalism. He has previously been published on VentureFizz, Search Security, Nintendo World Report, and elsewhere. In his spare time, Alex hosts the weekly Nintendo podcast Talk Nintendo Podcast and works on personal writing projects, including two previously self-published science fiction novels. More Insights Industry Reports ThreatLabz 2025 Ransomware Report The Total Economic Impact™ Of Zscaler Private Access (ZPA) Zscaler ThreatLabz 2025 VPN Risk Report GigaOm Radar for CNAPP The Total Economic Impact™ of Google SecOps Access More Research Webinars Building a Robust SOC in a Post-AI World Retail Security: Protecting Customer Data and Payment Systems Rethinking SSE: When Unified SASE Delivers the Flexibility Enterprises Need Securing Remote and Hybrid Work Forecast: Beyond the VPN AI-Powered Threat Detection: Beyond Traditional Security Models More Webinars You May Also Like THREAT INTELLIGENCE Cybercrime's Cobalt Strike Use Plummets 80% Worldwide by Nate Nelson, Contributing Writer MAR 07, 2025 THREAT INTELLIGENCE 'Lucid' Phishing Tool Exploits Faults in iMessage, Android RCS by Nate Nelson, Contributing Writer MAR 26, 2025 THREAT INTELLIGENCE Attackers Ramp Up Efforts Targeting Developer Secrets by Robert Lemos, Contributing Writer MAY 02, 2025 CYBERATTACKS & DATA BREACHES DeepSeek Breach Opens Floodgates to Dark Web by Emma Zaballos APR 22, 2025 Editor's Choice ENDPOINT SECURITY Ivanti EPMM Zero-Day Bugs Spark Exploit Frenzy — Again byNate Nelson FEB 12, 2026 6 MIN READ CYBER RISK Those 'Summarize With AI' Buttons May Be Lying to You byJai Vijayan FEB 12, 2026 5 MIN READ CYBERATTACKS & DATA BREACHES Senegalese Data Breaches Expose Lack of Security Maturity byNate Nelson FEB 12, 2026 5 MIN READ 2026 Security Trends & Outlooks THREAT INTELLIGENCE Cybersecurity Predictions for 2026: Navigating the Future of Digital Threats JAN 2, 2026 CYBER RISK Navigating Privacy and Cybersecurity Laws in 2026 Will Prove Difficult JAN 12, 2026 ENDPOINT SECURITY CISOs Face a Tighter Insurance Market in 2026 JAN 5, 2026 THREAT INTELLIGENCE 2026: The Year Agentic AI Becomes the Attack-Surface Poster Child JAN 30, 2026 Download the Collection Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox. SUBSCRIBE Webinars Building a Robust SOC in a Post-AI World THURS, MARCH 19, 2026 AT 1PM EST Retail Security: Protecting Customer Data and Payment Systems THURS, APRIL 2, 2026 AT 1PM EST Rethinking SSE: When Unified SASE Delivers the Flexibility Enterprises Need WED, APRIL 1, 2026 AT 1PM EST Securing Remote and Hybrid Work Forecast: Beyond the VPN TUES, MARCH 10, 2026 AT 1PM EST AI-Powered Threat Detection: Beyond Traditional Security Models WED, MARCH 25, 2026 AT 1PM EST More Webinars White Papers The Threat Prevention Buyer's Guide: Find the best AI-driven threat protection solution to stop file-based attacks. Assessing Security Architectures: Zero Trust vs. Network-Centric Models 5 Steps to Stop Ransomware With Zero Trust 10 Ways a Zero Trust Architecture Protects Against Ransomware