Configs - Leaked.rar

The leak contains approximately and VPN credentials from Fortinet FortiGate firewalls . Key Details of the Leak

Unknown group releases Fortinet config files and VPN ... - Heise

So the data was probably stolen in the fall of 2022, but where and how did the unknown attackers obtain the sensitive information? heise online Configs Leaked.rar

: Examine your firewall logs for any unauthorized administrative access dating back to late 2022.

: Immediately change all administrative and VPN passwords. The leak contains approximately and VPN credentials from

: Investigations suggest the data was likely stolen in late 2022 . The leak is believed to be the result of attackers exploiting a specific authentication bypass vulnerability, CVE-2022-40684 , which allowed administrative access to affected FortiOS, FortiProxy, and FortiSwitchManager products.

Security researchers and community members on platforms like Reddit have been mapping the leaked IPs to identify affected organizations. If you are an administrator of a FortiGate device: heise online : Examine your firewall logs for

: Ensure your firmware is updated to versions that patch CVE-2022-40684 .