Fortinet Confirms Authenticity of 2022 FortiGate Config Leaks
/ 1 min read
🛡️💔 Fortinet confirms authenticity of leaked FortiGate configurations from 2022. The cybersecurity firm Fortinet has verified that records leaked by the Belsen Group are genuine configurations stolen during a zero-day attack in 2022, affecting around 15,000 devices. The leaked data includes sensitive information such as IP addresses, firewall rules, and passwords, some in plain text. While the majority of victims were small to medium businesses, a few larger entities and unidentified governments were also impacted. Notably, no configurations from Iran were found in the dataset, despite many devices being exposed. Fortinet advises organizations to review their security practices and change credentials if they were using affected versions of FortiOS prior to November 2022.
