Tag

Sonicwall

All articles tagged with #sonicwall

technology27 days ago•2 min saved

SonicWall Addresses Zero-Day Exploit in SMA 1000 Devices

SonicWall has issued a warning about a new zero-day vulnerability (CVE-2025-40602) in the SMA1000 Appliance Management Console, which has been exploited in attacks to escalate privileges. The flaw is being exploited in conjunction with another critical vulnerability (CVE-2025-23006) to execute remote code with root privileges. SonicWall advises users to update to the latest firmware to mitigate the risk, as over 950 appliances are exposed online. This follows recent security breaches and malware attacks targeting SonicWall devices.

via BleepingComputer|

#cyberattack #security-patch #sma1000

network-security3 months ago•2 min saved

SonicWall Urges Password Resets Following Cloud Backup Breach

SonicWall has urged customers to reset passwords after a security breach exposed encrypted firewall configuration backup files for less than 5% of its customers, potentially aiding attackers in exploiting firewalls. The breach involved brute-force attacks on cloud backups, with no evidence of files being leaked online. SonicWall recommends verifying backup status, resetting passwords and TOTP, and importing new preferences. The incident coincides with ongoing attacks by the Akira ransomware group exploiting SonicWall vulnerabilities to gain network access and disable security defenses.

via The Hacker News|

#cloud-backup #cybersecurity #data-breach

technology3 months ago•2 min saved

SonicWall urges password resets following security breaches and data exposure

SonicWall has warned customers to reset credentials after a security breach exposed firewall configuration backup files, which could potentially allow threat actors to access sensitive information. The company has taken steps to cut off attacker access and is working with authorities, providing guidance for administrators to secure their networks. The breach affected fewer than 5% of SonicWall firewalls and was linked to brute-force attacks targeting cloud backup files.

via BleepingComputer|

#credentials-reset #cybersecurity #firewall-backup

cybersecurity5 months ago•2 min saved

SonicWall SSL VPNs Under Siege: Urgent Security Alerts and Zero-Day Threats

SonicWall has advised users to disable SSLVPN services due to potential exploitation of a zero-day vulnerability in Gen 7 firewalls by ransomware gangs, following reports of active attacks and advisories from cybersecurity firms. The company recommends securing firewalls, enabling MFA, and restricting access to mitigate risks while investigating the issue.

via BleepingComputer|

#cyberattack #cybersecurity #ransomware

security6 months ago•2 min saved

SonicWall NetExtender Trojanized to Steal VPN Credentials in Remote Attacks

SonicWall warns of a trojanized version of its NetExtender VPN client distributed via spoofed websites, designed to steal VPN credentials and configuration data, with detection tools now able to block the malicious installers. Users are advised to download software only from official sources and scan files before installation.

via BleepingComputer|

#cybersecurity #netextender #security

cybersecurity2 years ago•2 min saved

"Massive SonicWall Firewall Vulnerability Exposes 178K Devices to DoS and RCE Attacks"

Over 178,000 SonicWall next-generation firewalls with exposed management interfaces are vulnerable to denial-of-service (DoS) and potential remote code execution (RCE) attacks due to two security flaws. Attackers can exploit these vulnerabilities to force the appliances into maintenance mode, disrupting corporate networks' VPN access. Admins are urged to ensure the management interface is not exposed online and to promptly update to the latest firmware versions. SonicWall's history includes being targeted in cyber-espionage attacks and by ransomware gangs, making these vulnerabilities a significant concern for over 500,000 exposed appliances worldwide.

via BleepingComputer|

#cybersecurity #dos #rce