[ SB 20.28 ] A hacker has leaked access for 900+ enterprise VPN servers

original source/report from ZDNet/Catalin Companu

A hacker has leaked today plaintext passwords for 900+ enterprise VPN servers on a forum frequented by multiple ransomware gangs

The list includes only Pulse Secure VPN servers vulnerable to CVE-2019-11510. Details include:

  • IP addresses
  • VPN firmware version
  • SSH keys
  • All local users and their password hashes
  • Admin account details
  • Usernames and cleartext passwords
  • VPN session cookies

vpn list

Fragen? Kontakt: info@zero.bs