One Hacker Used ChatGPT to Break Into 600 Firewalls Across 55 Countries. He Wasn't Even Good.

Amazon's threat intelligence team just published the most detailed case study yet of AI-augmented cyberattack at scale. A single financially motivated actor — Russian-speaking, working alone or with a small crew — compromised more than 600 FortiGate firewall appliances across 55 countries between January 11 and February 18 this year. Five weeks. Six hundred corporate perimeters breached. The attacker's skill level: low to average. That's the part that matters. Not the scale. The gap between the attacker's ability and the attacker's output. The Attack No zero-day. No novel exploit. The campaign worked because thousands of organizations left their FortiGate management interfaces exposed to the internet on ports 443, 8443, 10443, and 4443 — and protected them with weak, reused credentials and single-factor authentication. The attacker scanned systematically from a single IP address, 212.11.64.250, and walked through front doors that were never locked. What made this different from a conve