01-16-2025, 08:44 AM
Iz raznih online vesti se zna više detalja
Hackers leak configs and VPN credentials for 15,000 FortiGate devices
Quote:In a blog post about the FortiGate leak, Beaumont says that the leak is believed to be linked to a 2022 zero-day tracked as CVE-2022–40684 that was exploited in attacks before a fix was released.
"I've done incident response on one device at a victim org, and exploitation was indeed via CVE-2022–40684 based on artefacts on the device. I've also been able to verify the usernames and password seen in the dump matches the details on the device," explains Beaumont.
"The data appears to have been assembled in October 2022, as a zero day vuln. For some reason, the data dump of config has been released today, just over 2 years later."
Hackers leak configs and VPN credentials for 15,000 FortiGate devices