Thousands of Fortinet VPN Account Credentials Leaked

2021-09-09 22:49

On Wednesday, BleepingComputer reported that it's been in touch with a threat actor who leaked a list of nearly half a million Fortinet VPN credentials, allegedly scraped from exploitable devices last summer.

The news outlet has analyzed the file and reported that it contains VPN credentials for 498,908 users over 12,856 devices.

BleepingComputer didn't test the credentials but said that all of the IP addresses check out as Fortinet VPN servers.

Using the leaked VPN credentials, attackers can perform data exfiltration, install malware and launch ransomware attacks.

According to BleepingComputer, a threat actor known as Orange - the administrator of the newly launched RAMP hacking forum and a previous operator of the Babuk ransomware operation - was behind the leak of Fortinet credentials.

On Tuesday, Orange created a post on the RAMP forum with a link to a file that allegedly contained thousands of Fortinet VPN accounts.

News URL

https://threatpost.com/thousands-of-fortinet-vpn-account-credentials-leaked/169348/

#credential #fortinet #leaked #VPN

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Fortinet		164	56	387	164	77	684