Network administrators with Fortinet’s FortiGate next generation firewall in their IT environments are being warned to thoroughly scrutinize systems for possible compromise, following last week’s dump of stolen configuration and VPN credentials by a threat actor.
“Patching is not enough,” tweeted cybersecurity researcher Florian Roth on Thursday. “If you take security seriously, you must run a compromise assessment to check whether the device and other systems in your network have already been breached.”
“Treat this like the security incident it is,” he added.
The warning comes after Roth did an analysis of stolen FortiGate device configuration data released earlier this month by a threat actor calling itself the Belsen Group. That data, claimed to be config settings for 15,000 firewalls, would be of great value to hackers.
Continue reading on CSOonline.com
Source:: Network World