Summary: A new hacking group known as the Belsen Group has leaked sensitive configuration files, IP addresses, and VPN credentials for over 15,000 FortiGate devices on the dark web. This data dump, which includes critical technical information, was released to promote the group and is believed to be linked to a previously exploited zero-day vulnerability. Cybersecurity experts warn that the leaked information poses significant risks to affected organizations, urging immediate action to secure their networks.

Threat Actor: Belsen Group | Belsen Group
Victim: FortiGate Device Users | FortiGate Device Users

Keypoints :

• The Belsen Group leaked a 1.6 GB archive containing sensitive data from FortiGate devices, organized by country.
• The leak includes configuration files and VPN credentials, some of which are in plain text, exposing critical network information.
• Experts link the leak to the exploitation of CVE-2022–40684, a zero-day vulnerability that allowed unauthorized access to FortiGate devices.