A hacker group called Belsen Group has leaked data from around 15,000 Fortinet firewalls, which they claim to have obtained by exploiting CVE-2022-40684, a vulnerability disclosed in October 2022. The leaked data, which includes IPs, usernames, passwords, device configurations, and firewall rules, was classified by country and contained sensitive information such as plaintext credentials and management certificates. Security researcher Kevin Beaumont confirmed the authenticity of the leak and warned that even though many devices may have been patched, the leaked data could still pose a risk as the affected devices remain online and exposed. The leak highlights the importance of ensuring vulnerabilities are patched and access controls remain robust.

‍