a russian-speaking threat group released verified vpn and administrative credentials for approximately 74,000 fortinet fortigate firewalls spanning 194 countries — roughly half of all internet-facing fortinet devices worldwide. credentials were extracted from configuration files via credential harvesting and offline hash cracking, meaning they remain valid regardless of firmware patches. the scale makes this one of the largest single-release credential exposures targeting network perimeter devices on record, with structural implications for enterprise and government networks globally.