Newly-emergent threat operation Belsen Group has leaked more than 15,000 Fortinet FortiGate firewalls' sensitive data for free in BreachForums, reports Security Affairs.
Included in the exposed firewall data are IP addresses, passwords, and configuration files, said Belsen Group in its post on the hacking forum.
Heise Security said all of the impacted FortiGate firewalls — most of which are in Mexico, the U.S., and Germany — had FortiOS versions prior to version 7.2.2 unveiled in October 2022, while many of the exposed IP addresses were from leading ISPs, including Vodafone and Deutsche Telekom.
"As many as 80 different device types can be found in the data leak, with the FortiGate Firewall 40F and 60F being the most widespread," said Heise Security. "There are also WLAN gateways and devices for installation in the server rack as well as compact devices for the desk or broom cupboard."
