azorius.net

Hackers leak configs and VPN credentials for 15,000 FortiGate devices (www.bleepingcomputer.com)
from kid@sh.itjust.works to cybersecurity@sh.itjust.works on 16 Jan 11:52
https://sh.itjust.works/post/31183428

#cybersecurity

threaded - newest

thisbenzingring@lemmy.sdf.org on 16 Jan 14:27 next collapse

A new hacking group has leaked the configuration files, IP addresses, and VPN credentials for over 15,000 FortiGate devices for free on the dark web, exposing a great deal of sensitive technical information to other cybercriminals.

Oh shit… Yesterday at work we had a stop what you are doing and update that device moment. Hopefully my works VPN isn’t in that list…

slazer2au@lemmy.world on 16 Jan 15:41 collapse

Check your ip against this list.

github.com/arsolutioner/…/affected_ips.txt

If your IP is on the list roll every single secret on the device.

LDAP/radius/tacacs secrets, SNMP communities, IPsec keys, local and admin accounts.

thisbenzingring@lemmy.sdf.org on 16 Jan 17:10 collapse

thanks friend!

slazer2au@lemmy.world on 16 Jan 15:39 collapse

Someone has GitHubed the list of addresses

github.com/arsolutioner/…/affected_ips.txt