Hackers Leak Configs and VPN Credentials for 15,000 FortiGate Devices

BySeventech Solutions

A new hacking group, the “Belsen Group,” has leaked sensitive configuration files, IP addresses, and VPN credentials for over 15,000 FortiGate devices. The data was uploaded on the dark web to promote the group and includes files sorted by country and IP address. Each file contains sensitive information like firewall rules, private keys, and plain-text VPN passwords.

The leak is tied to the exploitation of the 2022 zero-day vulnerability CVE-2022–40684, which allowed hackers to download configurations and create rogue admin accounts. Although the data was collected in 2022, its exposure still poses risks if credentials and configurations haven’t been updated. Administrators are urged to change passwords and check for signs of compromise.

Source: BleepingComputer

Similar Posts

Understanding the OpenSSH RegreSSHion Vulnerability

BySeventech Solutions

Introduction In the ever-evolving landscape of cybersecurity, staying abreast of the latest vulnerabilities and their potential impact is crucial. Recently, the cybersecurity community has been abuzz with discussions surrounding the OpenSSH RegreSSHion vulnerability. This blog post delves into the specifics of this vulnerability, its implications, and the steps you can take to protect your systems….

|

Unauthenticated RCE Flaw Impacts all GNU/Linux Systems

BySeventech Solutions

A newly discovered critical Remote Code Execution (RCE) flaw has been found to impact all GNU/Linux systems, posing a significant threat to millions of servers, desktops, and embedded devices running on the open-source platform. This vulnerability is alarming as it allows attackers to execute arbitrary code remotely without needing authentication. Here’s a closer look at…

Unmasking the Sitting Duck Attack: Understanding the Threat and How to Stay Secure

BySeventech Solutions

Introduction:The “Sitting Duck Attack” is a term used to describe a specific cybersecurity vulnerability where systems are left exposed due to poor configuration or lack of updates. This attack method takes advantage of predictable system behaviors, making networks easy targets for attackers. Vulnerability Overview:A Sitting Duck Attack typically occurs when a system is left with…

Understanding CDN Safety: Ensuring Secure Content Delivery

BySeventech Solutions

Introduction In today’s digital landscape, Content Delivery Networks (CDNs) play a pivotal role in optimizing website performance and user experience. However, ensuring the security of CDN operations is crucial. This blog post delves into CDN safety, addressing its importance, potential risks, and best practices to mitigate vulnerabilities. What is a CDN? A Content Delivery Network…

Understanding the WiFi Flaw CVE-2024-30078: Risks and Mitigation

BySeventech Solutions

Introduction In the realm of cybersecurity, staying informed about vulnerabilities is crucial to maintaining the integrity and security of digital networks. Recently, a significant vulnerability, CVE-2024-30078, has emerged in WiFi protocols, posing risks to wireless network security. This blog post explores the specifics of this WiFi flaw, its implications, and effective measures to mitigate potential…

Cybercriminals Revive Grandoreiro, Targeting Over 1,500 Banks

Cybercriminals Revive Grandoreiro, Targeting Over 1,500 Banks

BySeventech Solutions

Grandoreiro Banking Trojan Resurfaces, Targeting Over 1,500 Banks Worldwide A recent surge in cyberattacks has brought the Grandoreiro banking Trojan back into the spotlight. This sophisticated malware, known for its ability to steal sensitive financial information, has resurfaced, targeting over 1,500 banks worldwide. How Does Grandoreiro Work? Grandoreiro is a highly adaptable malware that can…