Fortinet confirms 440gb data leak
Fortinet confirms 440gb data leak
Blog Article
US cybersecurity giant Fortinet has confirmed that it suffered a data leak after a threat actor claimed to have stolen 440GB of files from the company’s Microsoft SharePoint servers.
Fortinet is one of the largest cybersecurity companies in the world that sells network security products such as Firewalls, Routers, and VPN devices. The company also offers SIEM solutions, network management, EDR/XDR, as well as consulting services.
As reported by Bleeping Computer, a threat perpetrator posted on a hacking forum that they had stolen 440GB of data from Fortinet’s Azure SharePoint instance. The attacker then shared the credentials to an S3 bucket that claimed to contain the stolen data, so that it could be downloaded by other threat actors.
Indodax Allegedly Suffered Data Leakage, Losses Reached Rp335 Billion Due To Illegal Transactions
The perpetrator of the threat, known as “Fortibitch”, claimed to have tried to blackmail Fortinet into paying a ransom, possibly to prevent the publication of the data. However, Fortinet refused to pay.
In response to questions regarding this incident, Fortinet confirmed that customer data had been stolen from a “third-party cloud-based file drive”.
“An individual gained unauthorized access to a limited number of files stored on Fortinet’s third-party cloud-based file drive instance, which included limited data regarding a small number of Fortinet customers,” a company representative told BleepingComputer.