Fortinet Confirms Data Breach After Hacker Claims To Steal 440GB of Files (bleepingcomputer.com)
- Reference: 0174989873
- News link: https://it.slashdot.org/story/24/09/13/1539247/fortinet-confirms-data-breach-after-hacker-claims-to-steal-440gb-of-files
- Source link: https://www.bleepingcomputer.com/news/security/fortinet-confirms-data-breach-after-hacker-claims-to-steal-440gb-of-files/
> Fortinet is one of the largest cybersecurity companies in the world, selling secure networking products like firewalls, routers, and VPN devices. The company also offers SIEM, network management, and EDR/XDR solutions, as well as consulting services.
>
> Early this morning, a threat actor posted to a hacking forum that they had stolen 440GB of data from Fortinet's Azure Sharepoint instance. The threat actor then shared credentials to an alleged S3 bucket where the stolen data is stored for other threat actors to download. The threat actor, known as "Fortibitch," claims to have tried to extort Fortinet into paying a ransom, likely to prevent the publishing of data, but the company refused to pay. In response to our questions about incident, Fortinet confirmed that customer data was stolen from a "third-party cloud-based shared file drive."
[1] https://www.bleepingcomputer.com/news/security/fortinet-confirms-data-breach-after-hacker-claims-to-steal-440gb-of-files/
OOO (Score:2)
It would have been surprising had they announced it before the breach.
Re:OOO (Score:5, Insightful)
I think the key is they didn't announce it until after the intruder did.
More like "Cyperinsecurity giant" (Score:2)
As most of these peddlers of 2nd rated stuff are these days. Pathetic.
Re: (Score:2)
> As most of these peddlers of 2nd rated stuff are these days. Pathetic.
They hit trifecta of security incompetence:
1) A Microsoft operating system.
2) Sharepoint (Holy Shit, Batman!)
3) Amazon S3 cloud services (but really, any 3rd party cloud service will qualify).
Rather ironic ... (Score:4, Insightful)
.. that a Cybersecurity got hacked. LUL.
Looks like security has the same rule-of-thumb as riding motorcycles ...
> We wear gear all the time because it isn't IF but WHEN you will crash.
becomes:
> We encrypt because it isn't IF but WHEN you will get hacked.
What the hell are they doing with 440 GB of data???
Re: (Score:3)
Monetizing it.
Re:Rather ironic ... (Score:4, Insightful)
> .. that a Cybersecurity got hacked. LUL.
> Looks like security has the same rule-of-thumb as riding motorcycles ...
>> We wear gear all the time because it isn't IF but WHEN you will crash.
> becomes:
>> We encrypt because it isn't IF but WHEN you will get hacked.
> What the hell are they doing with 440 GB of data???
Let's not skip the important bit here. What the hell are they doing with 440 GB of data ON MICROSOFT SHAREPOINT! How could any security company think that's a secure place to store data. It's not even like I can blame Microsoft specifically in this case. It's right in the god damned name. "Share"point. SHARE! Does a supposed cybersecurity company not understand that the word share != secure. In fact, it may actually be opposite of secure.
There needs to be a very serious discussion now about these cybersecurity companies and whether they add any actual value to our systems, or if we've been sold a complete bill of goods. None of them seem capable of securing their own systems. And some of them seem to actually run on the dumbest possible level of security themselves. Not a great example of how to take care of systems and data, for certain.
Re: (Score:2)
I have read where a lot of right wingers feel the way they do because of feelings of loss of control. They can't control elections because their vote doesn't matter. Nobody hears their complaints much less acts on them. There are similar other reasons. I think Obama may have said this about them.
I feel like that sometimes when it comes to these near daily emails I get that my data has been compromised. The NationalData breach being the one that finally got me to freeze my credit reports. It's sicke
Re: (Score:2)
I work in the cybersecurity industry, and I can promise that some things *have* changed ... but not because of all the news: it's because of the lawsuits.
CISOs (the guy at the top of security for big companies) have recently been held personally liable when a breach is shown to have been caused by incompetence. As you might imagine, this has quite an effect on them: it's one thing to lose your job because you screw up, and another entirely to face losing all your assets.
I'm not sure how many will ever face
Dogfooding (Score:2)
If only they using their own products to detect data exfiltration. Or maybe they were, and those products are not so great. Either way, Fortinet has some explaining to do.
there are only two kinds of orgs in the world... (Score:2, Insightful)
...those that know they've been breached, and those that don't...
Because of FortiShit I couldn't use Ubuntu (Score:1)
Because of FortiShit I couldn't use Ubuntu, their shitty VPN only worked on mac and windows.
Re: (Score:2)
That sucks but you can route through your VM.
Re: Because of FortiShit I couldn't use Ubuntu (Score:2)
You mean this Fortinet VPN?
[1]https://repo.fortinet.com/ [fortinet.com]
[1] https://repo.fortinet.com/
nobody puts useful data in sharepoint (Score:2)
It's just 440 GB of annual company picnic photos.
A security company used MS SharePoint server (Score:2)
The rest is predictable.
Re: (Score:3)
Microsoft Sharepoint server? It doesn't look too good to me already...
Re: (Score:2)
....You Had One Job.
Queue short sellers, and with good reason.