Sign in / up

back to article Fortinet: FortiGate config leaks are genuine but misleading

Fortinet has confirmed that previous analyses of records leaked by the Belsen Group are indeed genuine FortiGate configs stolen during a zero-day raid in 2022. The leaked data includes IP addresses, configurations (including firewall rules), and passwords – some of which were in plain text, according to infosec watcher Kevin …

COMMENTS

Post your comment
House rules Send corrections
Add to 'My topics' unstar *
  1. Anonymous Coward
    Anonymous Coward

    Crimea

    If it is in Crimea, then it is in Ukraine, not Russia.

    11 0 Reply
  2. harrys Bronze badge

    closed source firewalls are a bad bad bad idea

    the secrecy will always allow them to put financial considerations before security

    but they'll keep being installed and they'll keep milking it in collusion with their "compliance/insurance buddies"

    4 1 Reply
    1. Anonymous Coward
      Reply Icon
      Anonymous Coward

      Network firewalls are dead and have been for years.

      It's all at the application layer now, abusing permitted allowed connections with the attack.

      I'm not aware of any FOSS security products that cover all modern broad spectrum attack surfaces. You can do it with FOSS, but is requires integration of 25-30 different products. If can be done, but the effort and supprotability is huge. It's a brave organisation that would do this.

      Closed source usually are suites with better coverage - and support.

      Only some vendors seem to be CVE factories. Others seem to know what "secure coding" means. But they change more.

      4 2 Reply
  3. Anonymous Coward
    Anonymous Coward

    Errr...

    "If your organization has consistently adhered to routine best practices...

    How about following routine best practices and doing secure coding, Fortinet...?

    Seriously, FTNT is a CVE factory.

    4 0 Reply
  4. Anonymous Coward
    Anonymous Coward

    Err...

    "If your organization has consistently adhered to routine best practices...

    How about following routine best practices and doing secure coding, Fortinet...?

    Seriously, FTNT is a CVE factory.

    1 1 Reply

POST COMMENT House rules

Not a member of The Register? Create a new account here.

Forgotten password ?

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Other stories you might like