original source/report from ZDNet/Catalin Companu
A hacker has leaked today plaintext passwords for 900+ enterprise VPN servers on a forum frequented by multiple ransomware gangs
The list includes only Pulse Secure VPN servers vulnerable to CVE-2019-11510. Details include:
- IP addresses
- VPN firmware version
- SSH keys
- All local users and their password hashes
- Admin account details
- Usernames and cleartext passwords
- VPN session cookies
Fragen? Kontakt: info@zero.bs