HomeOur Team

49,620 FortiGate VPN gateways affected by the CVE-2018-13379

By Tom Grant
Published in OS
November 28, 2020
1 min read

On November 25, an archive containing about 6.7 GB of data (IP addresses, usernames, passwords) of 49,620 FortiGate VPN gateways affected by the CVE-2018-13379 vulnerability was made freely available.

Everyone wrote about it, but we are not interested in writing about what everyone writes. 🤷‍♂️ Therefore, according to our tradition, we took and analyzed the accounts from the uploaded files sslvpn_websession.

In total, there were 354,760 entries containing: IP, username (often an email address) and password. After clearing of garbage and duplicates, 197,021 entries remained.

The 10 most popular passwords (in parentheses, the place of the password, case-insensitive, in the top 100 passwords from all the leaks that we analyzed earlier

1️⃣ Temporal2020

2️⃣ 123456 (1)

3️⃣ P@ssw0rd

4️⃣ Password1 (29)

5️⃣ Juzgado2020

6️⃣ asdf123.

7️⃣ Octubre2020

8️⃣ macaw777

9️⃣ Password (5)

1️⃣0️⃣ Chrysler@1

of the interesting passwords that are not included in the top, you can mark the password Hello!. 🤣

10 most popular domains (the login part):

1️⃣ cjf.gob.mx

2️⃣ cgi.com

3️⃣ magna.com

4️⃣ cendoj.ramajudicial.gov.co

5️⃣ rexel.com.cn

6️⃣ prenatalretailgroup.com

7️⃣ ol.na

8️⃣ telenav.cn

9️⃣ emilfrey.fr

1️⃣ 0️⃣ acninc.com


Tags

#vpn
Previous Article
How To launch the Chrome browser immediately in Incognito mode
Tom Grant

Tom Grant

Product Designer

Related Posts

Minimalist Dock: leaving only active applications
May 18, 2022
1 min
© 2022, All Rights Reserved.

Quick Links

Our TeamContact Us

Legal Stuff

Social Media