Download Certificate- CMOs | ECIO | Most Admired Brand | Most Trusted Company

Attacker leaked thousands of Fortinet VPN accounts


By MYBRANDBOOK


Attacker leaked thousands of Fortinet VPN accounts

Fortinet has warned that 87,000 credentials for FortiGate SSL VPN devices have been released online. The company said that it is aware of the disclosure and, after investigating the incident, has concluded that the credentials were obtained through the exploitation of CVE-2018-13379. It is a known security vulnerability affecting the FortiOS SSL VPN web tunnel software portal. According to BleepingComputer, a threat actor known as Orange – the administrator of the newly launched RAMP hacking forum and a previous operator of the Babuk ransomware operation – was behind the leak of Fortinet credentials.

 

According to analysis done by Advanced Intel, the IP addresses are for devices worldwide. As the chart below shows, there are 22,500 victimized entities located in 74 countries, with 2,959 of them being located in the US.

 

Using the leaked VPN credentials, attackers can perform data exfiltration, install malware and launch ransomware attacks.

 

The bug, which recently made it to the Cybersecurity and Infrastructure Security Agency’s (CISA’s) list of the top 30 most-exploited flaws, lets an unauthenticated attacker use specially crafted HTTP resource requests in order to download system files under the SSL VPN web portal.

 

Fortinet fixed the glitch in a May 2019 update (and has since then repeatedly urged customers to upgrade their devices to FortiOS 5.4.13, 5.6.14, 6.0.11, or 6.2.8 and above). But even if security teams patched their VPNs, if they didn’t also reset the devices’ passwords at the same time, the VPNs still might be vulnerable.

 
 BREAKING NEWS  BREAKING NEWS
With eyes on IPO, Flipkart plans to move domicile from Singapore

With eyes on IPO, Flipkart plans to move domicile from Singapore ...

Walmart-owned Flipkart is reportedly planning to move its domicile back f...

Sony names two executives as CEO of its Playstation unit

Sony names two executives as CEO of its Playstation unit...

Sony has announced that two veteran executives will take over as CEOs of i...

Permanent deletion of transactions can make e-rupee anonymous, RB

Permanent deletion of transactions can make e-rupee anonymous, RB...

The Governor of Reserve Bank of India (RBI) stated that the permanent del...

Zscaler unveils Digital Experience Monitoring Copilot

Zscaler unveils Digital Experience Monitoring Copilot...

Zscaler has announced groundbreaking innovations - ZDX Copilot, Hosted Mon...

 TECHNO TRENDS  Placeholder image
The government of India intends to construct a single portal f

The government of India intends to construct a single portal f

A single portal will be launched by the Indian government to list all of it...

OpenAI offers GPT-4o, a faster model available to all users at

OpenAI offers GPT-4o, a faster model available to all users at

GPT-4o, a faster and more sophisticated AI model, is made available to all...

Paytm brings UPI Lite Wallet for low-value transactions

Paytm brings UPI Lite Wallet for low-value transactions

Paytm’s parent company One97 Communications (OCL) is emphasizing upon UP...

BHIM to join e-commerce, competing with PhonePe and Google Pay

BHIM to join e-commerce, competing with PhonePe and Google Pay

The government-supported payment software BHIM is getting ready to join t...

 E-Magazine 
 TECHNOTAINMENT  Placeholder image
S.S. Rajamouli and Disney+ Hotstar brings the untold story of

S.S. Rajamouli and Disney+ Hotstar brings the untold story of

Airtel Xstream Play strengthens regional content library, part

Airtel Xstream Play strengthens regional content library, part

Bharti Airtel (“Airtel”), one of India’s leading telecommunications

ED attaches Raj Kundra, Shilpa Shetty’s Rs 97 crore worth as

ED attaches Raj Kundra, Shilpa Shetty’s Rs 97 crore worth as

The Enforcement Directorate (ED) has seized businessman Raj Kundra's pro
 MOVERS & SHAKERS  Placeholder image
New Relic names Katrina Wong as CMO

New Relic names Katrina Wong as CMO

Clover Infotech appointed Subham Banerjee as CDO

Clover Infotech appointed Subham Banerjee as CDO

Clover Infotech has announced the appointment of Subham Banerjee as its Ch
Saviynt ropes in Sanjeevi Kumar as new Sales Director in India

Saviynt ropes in Sanjeevi Kumar as new Sales Director in India

The cloud-native identity and governance platform solutions provider Saviy
 OPEN YOUR EYES  Placeholder image

Digital Strategies Focuses On Technology To Improve Business Performance
CIO’s should have the understanding "Jugaad" to overcome technology challenges
Cyber Security, AI/ML & Public Cloud Top Priorities for CIOs
Changing Dynamics Of Cybersecurity In The Age of Coronavirus
Can we could visualise a new world post COVID -19
 INTERVIEWS  Placeholder image
Commvault leading the next generation of data protection throu

Commvault leading the next generation of data protection throu

Cisco committed to help build trusted, resilient future for or

Cisco committed to help build trusted, resilient future for or

Cisco is delivering on its promise of the AI-driven Cisco Security Cloud to
MEASURE AND IMPROVE YOUR SECURITY POSTURE WITH KEYSIGHT

MEASURE AND IMPROVE YOUR SECURITY POSTURE WITH KEYSIGHT

Is your security team prepared for the next cyber-attack? Are your security
 HOT PICK  Placeholder image
Lenovo launches IdeaPad Pro 5i in India with Intel Core Ultra

Lenovo launches IdeaPad Pro 5i in India with Intel Core Ultra

COLORFUL rolls out an array of gaming laptops

COLORFUL rolls out an array of gaming laptops

COLORFUL launched its incredible series of COLORFUL EVOL P15 gaming laptop
Dell Technologies launches new AI-powered commercial PC portfo

Dell Technologies launches new AI-powered commercial PC portfo

Dell Technologies has launched the broadest portfolio of commercial AI lap
 MAKE IN INDIA BRANDS   Placeholder image
RELIANCE JIO INFOCOMM LTD.

RELIANCE JIO INFOCOMM LTD.


QUICK HEAL TECHNOLOGIES PVT. Ltd.

QUICK HEAL TECHNOLOGIES PVT. Ltd.


SECUREYE SERVICES PVT. LTD. 

SECUREYE SERVICES PVT. LTD. 


FINOLEX INDUSTRIES LTD.

FINOLEX INDUSTRIES LTD.


 EMINENT CIO'S OF INDIA  EMINENT CIO'S OF INDIA

Leveraging cutting-edge technologies for business agility

As a technology leader, I manage technical project...

Adopting latest technologies to deliver products that drive value, optimizing business process and maximize utilization

This is one thing that none of the organisations c...

Changing with market conditions & meeting customer expectations key for businesses to stay relevant and thrive

Digital Transformation by exploring cutting-edge t...

 ICONS OF INDIA  Placeholder image

Technology Icons Of India 2023: Kulmeet Bawa

Kulmeet Bawa resides as President & Managing Director, SAP Indian subc...

Technology Icons Of India 2023: Sunil Vachani

Sunil Vachani is the founder and chairman of India-listed Dixon Techno...

Technology Icons Of India 2023: Amit Chadha

. An influential leader in the engineering services industry for over ...

 PARTNER SPEAKERS  EMINENT CIO'S OF INDIA

Value Point equipping enterprises to stay abreast in the rapidly shifting landscape with necessary tools

In the modern world, technology is undeniably the keystone of business success...

Arrow PC Network Empowering Businesses with Visionary Technology Solutions for a Brighter Future

Being in the IT Sector for more than 30 years, the Founder & MD of Arrow PC Ne...

Creating a valuable and profitable long term business relationship to scale business growth

iValue is the center of the ecosystem, where it connects its channel partners ...

 PSU  Placeholder image

RailTel connecting every corner of India  

RailTel is an ICT provider and one of the largest neutral telecom infr...

C-DAC keeps India ahead in IT & Electronics R&D space  

Centre for Development of Advanced Computing (C-DAC) is the premier R&...

ECIL continues to keep India ahead in the growth of Information Technology and Electronics  

ECIL played a very significant role in the training and growth of high...

 VIDEOS  Placeholder image

 Top 25 Brands  Solution partners

Most Trusted Brands 2023 : Wipro Limited  

Wipro is a leader in innovation, and it has a strong track record of developin...

Most Trusted Brands 2023 : Reliance Jio Infocomm Limited  

Jio’s vision is to transform India with the power of digital revolution, to...

Most Trusted Brands 2023 : Tech Mahindra Limited

Tech Mahindra is focused on leveraging next-generation technologies including ...

 Value-Added Distribution  Value-Added Distribution

BEETEL TELETECH LTD.

: Beetel is one of the oldest and most reputed brands in the Industry,...

TEXONIC INSTRUMENTS

Texonic has carved a niche for itself in the Technology Distribution i...

WPG C&C COMPUTERS & PERIPHERALS PVT. LTD.

WPG C&C Computers & Peripherals (India) was incorporated in 2008 and ...

 ITFORUM 2024  
 WIITF 2024  
   
 CMO of the Year   Placeholder image
 WOMEN LEADERSHIP  Placeholder image
 EMINENT CIO's OF INDIA   Placeholder image
 TRENDS IN TECHNOLOGY  Placeholder image
MORE VIDEOS  Placeholder image
Brand Book
Brand Book
Brand Book
Brand Book
 ADVERTISEMENTS  Placeholder image
 TECHNOLOGY DISRUPTION Placeholder image

Huawei inks global patent cross-licensing agreement with OPPO

Huawei inks global patent cross-licensing agreement with OPPO

Veeam Announces New Security Capabilities and Malware Detection

Veeam Announces New Security Capabilities and Malware Detection

ChatGPT - taking the tech world by storm

ChatGPT - taking the tech world by storm

Crypto exchanges are popular targets for cyber attackers

Crypto exchanges are popular targets for cyber attackers

 UNICORNS REVOLUTIONISING Placeholder image

Makemytrip (india) Private Limited

Makemytrip (india) Private Limited

ATHER ENERGY PRIVATE LIMITED

ATHER ENERGY PRIVATE LIMITED

Coforge Limited

Coforge Limited

Eruditus Learning Solutions Private Limited

Eruditus Learning Solutions Private Limited


Copyright www.mybrandbook.co.in @1999-2024 - All rights reserved.
Reproduction in whole or in part in any form or medium without express written permission of Kalinga Digital Media Pvt. Ltd. is prohibited.
Other Initiatives : www.varindia.com | www.spoindia.org
ADMIRED BRANDS

AFTER MARKET SERVICES

CATEGORIES

DISTRIBUTORS & VADs
GOVERNMENT BODIES

INDUSTRY BODIES

MAKE IN INDIA

CONTACT US

SUBSCRIBE NOW