![]() It was also posted on the leak site of the Groove ransomware group, potentially indicating that the threat actors attempted to extort Fortinet VPN before sharing the user credentials online. Meanwhile, the leaked Fortinet VPN archive has already appeared on other hacker forums, which means that its spread throughout threat actor communities is all but guaranteed. The leaked archive itself contains 498,908 usernames and passwords scraped from 12,856 devices.Īccording to BleepingComputer, the author of the leak is known as ‘Orange’ and is a former member of the Babuk ransomware gang and the current administrator of the recently launched RAMP hacker forum where the leak was posted for free, presumably in order to promote the new forum.įollowing the posting of the leak on Tuesday, the RAMP hacker forum, hosted on a domain associated with the Babuk ransomware gang, is now down, with only the 7.5 MB leak file still left accessible to visitors. The leaker claims that the stolen user credentials, many of which are allegedly still valid, were acquired last summer by accessing unprotected devices and exploiting a Fortinet VPN vulnerability that has since been patched. ![]() A threat actor allegedly scraped nearly 500,000 Fortinet VPN user credentials from unsecured devices, then shared them on his newly launched hacker forum. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |