SOCRadar linked the theft of 86,644 FortiGate remote-access passwords to the ransomware group Lynx. British and US agencies had flagged the set privately back in June.
The gang cracked the passwords using 45 chained graphics cards. Fortinet never modernised its old hashing method, leaving logins open to anyone holding the list.
