The team behind Pulse Secure VPN had a year to fix the flaw which apparently it didn’t and now one of the most notorious hacker forums has leaked its sensitive data.
Sometimes, ransomware operators go to great lengths to hack companies and blackmail them. At other times, the data is handed over to them ready for exploitation.
That’s exactly the case now where a Russian hacker has leaked the IP addresses of 913 enterprise Pulse Secure VPN servers on a hacking forum along with other confidential details.
Hacker forum where the data has been leaked
The data is freely available to download on a Russian speaking hacker forum and includes the following records with each IP address:
Firmware version
Plaintext usernames and passwords
A list of Local users & their respective password hashes
SSH keys
Session cookies of the VPN
Additionally, later on, as reported by Bank Security, the domain names corresponding to the leaked IP addresses were also published revealing several government sites:
Few hours ago another Threat Actor published the list of domains related to those IPs.
On the list there are different .gov domains, banks and other large companies! pic.twitter.com/WXM59kbjmE
— Bank Security (@Bank_Security) August 5, 2020
The reason behind this hack is that all of these s ..
Support the originator by clicking the read the rest link below.
