Become a fan of Slashdot on Facebook

 


Forgot your password?
Close
typodupeerror
×
Security

Fortinet Confirms Data Breach After Hacker Claims To Steal 440GB of Files (bleepingcomputer.com) 25

Posted by msmash from the security-woes dept.
Cybersecurity giant Fortinet has confirmed it suffered a data breach after a threat actor claimed to steal 440GB of files from the company's Microsoft Sharepoint server. From a report: Fortinet is one of the largest cybersecurity companies in the world, selling secure networking products like firewalls, routers, and VPN devices. The company also offers SIEM, network management, and EDR/XDR solutions, as well as consulting services.

Early this morning, a threat actor posted to a hacking forum that they had stolen 440GB of data from Fortinet's Azure Sharepoint instance. The threat actor then shared credentials to an alleged S3 bucket where the stolen data is stored for other threat actors to download. The threat actor, known as "Fortibitch," claims to have tried to extort Fortinet into paying a ransom, likely to prevent the publishing of data, but the company refused to pay. In response to our questions about incident, Fortinet confirmed that customer data was stolen from a "third-party cloud-based shared file drive."

Fortinet Confirms Data Breach After Hacker Claims To Steal 440GB of Files More | Reply

Fortinet Confirms Data Breach After Hacker Claims To Steal 440GB of Files

Comments Filter:

  • OOO (Score:2)

    by GrahamJ ( 241784 )

    It would have been surprising had they announced it before the breach.

  • As most of these peddlers of 2nd rated stuff are these days. Pathetic.

    • As most of these peddlers of 2nd rated stuff are these days. Pathetic.

      They hit trifecta of security incompetence:

      1) A Microsoft operating system.
      2) Sharepoint (Holy Shit, Batman!)
      3) Amazon S3 cloud services (but really, any 3rd party cloud service will qualify).

      • Re: (Score:2)

        by gweihir ( 88907 )

        Indeed. And the attackers are more and more winning. They can just select which enterprise with incompetent IT security they want to walk into and not expect any real opposition. Of course, there are still some with competent IT security and attackers will stay away, just too much effort. There are also those that do not have money. But for the rest? It is just a question of time.

  • Rather ironic ... (Score:4, Insightful)

    by UnknownSoldier ( 67820 ) on Friday September 13, 2024 @12:21PM (#64785481)

    .. that a Cybersecurity got hacked. LUL.

    Looks like security has the same rule-of-thumb as riding motorcycles ...

    We wear gear all the time because it isn't IF but WHEN you will crash.

    becomes:

    We encrypt because it isn't IF but WHEN you will get hacked.

    What the hell are they doing with 440 GB of data???

    • Monetizing it.

    • Re:Rather ironic ... (Score:5, Insightful)

      by nightflameauto ( 6607976 ) on Friday September 13, 2024 @12:40PM (#64785561)

      .. that a Cybersecurity got hacked. LUL.

      Looks like security has the same rule-of-thumb as riding motorcycles ...

      We wear gear all the time because it isn't IF but WHEN you will crash.

      becomes:

      We encrypt because it isn't IF but WHEN you will get hacked.

      What the hell are they doing with 440 GB of data???

      Let's not skip the important bit here. What the hell are they doing with 440 GB of data ON MICROSOFT SHAREPOINT! How could any security company think that's a secure place to store data. It's not even like I can blame Microsoft specifically in this case. It's right in the god damned name. "Share"point. SHARE! Does a supposed cybersecurity company not understand that the word share != secure. In fact, it may actually be opposite of secure.

      There needs to be a very serious discussion now about these cybersecurity companies and whether they add any actual value to our systems, or if we've been sold a complete bill of goods. None of them seem capable of securing their own systems. And some of them seem to actually run on the dumbest possible level of security themselves. Not a great example of how to take care of systems and data, for certain.

      • I have read where a lot of right wingers feel the way they do because of feelings of loss of control. They can't control elections because their vote doesn't matter. Nobody hears their complaints much less acts on them. There are similar other reasons. I think Obama may have said this about them.

        I feel like that sometimes when it comes to these near daily emails I get that my data has been compromised. The NationalData breach being the one that finally got me to freeze my credit reports. It's sicke

        • I work in the cybersecurity industry, and I can promise that some things *have* changed ... but not because of all the news: it's because of the lawsuits.

          CISOs (the guy at the top of security for big companies) have recently been held personally liable when a breach is shown to have been caused by incompetence. As you might imagine, this has quite an effect on them: it's one thing to lose your job because you screw up, and another entirely to face losing all your assets.

          I'm not sure how many will ever face

      • I'm not sure why all the hate of sharepoint. In terms of a secure place to store files it is loads better than a typical file server subject to ransomware. The data is encrypted by default. I'm not yet sure if it was a social engineering breach or simply not following least privilege access principles.

        This is not an indictment of sharepoint, it is an indictment of not following best practices. An account without MFA and shared credentials sounds like it was used to gain access to this, that means a conditi

    • Re: (Score:2)

      by syn3rg ( 530741 )

      Looks like security has the same rule-of-thumb as riding motorcycles ...

      We wear gear all the time because it isn't IF but WHEN you will crash.

      Dress for the slide, not the ride.

  • If only they using their own products to detect data exfiltration. Or maybe they were, and those products are not so great. Either way, Fortinet has some explaining to do.
  • ...those that know they've been breached, and those that don't...
  • Because of FortiShit I couldn't use Ubuntu, their shitty VPN only worked on mac and windows.

  • It's just 440 GB of annual company picnic photos.

  • Looks like they're lacking in the Data Loss Prevention (DLP) area. Maybe they should be using Microsoft Purview ;-)

Slashdot Top Deals

A sine curve goes off to infinity, or at least the end of the blackboard. -- Prof. Steiner

Close