Hacker Leaks 900 Enterprise VPN Server Passwords on Dark Web

HealthITSecurity.com

Jessica Davis

The usernames and passwords, as well as IP addresses, from more than 900 Pulse Secure Virtual Private Network enterprise servers were posted in plain text on the dark web by a Russian-speaking hacker, first reported by ZDNet.com, which obtained the list with help from threat intelligence firm KELA.

The list contained Pulse Secure VPN server firmware version, SSH server keys, all local users and password hashes, administrator account details, previous VPN logins with cleartext credentials, and session cookies.

The authenticity of the list was...

Get the Morning Update

Thanks for subscribing!