SonicWall Hacked Using 0-Day in its Own VPN Product

upnorth

upnorth

Level 68
Thread author
Verified
Top Poster
Malware Hunter
Well-known
Jul 27, 2015
5,458
Content source
https://thehackernews.com/2021/01/exclusive-sonicwall-hacked-using-0-day.html
SonicWall, a popular internet security provider of firewall and VPN products, on late Friday disclosed that it fell victim to a coordinated attack on its internal systems.

The San Jose-based company said the attacks leveraged zero-day vulnerabilities in SonicWall secure remote access products such as NetExtender VPN client version 10.x and Secure Mobile Access (SMA) that are used to provide users with remote access to internal resources. "Recently, SonicWall identified a coordinated attack on its internal systems by highly sophisticated threat actors exploiting probable zero-day vulnerabilities on certain SonicWall secure remote access products," the company exclusively told The Hacker News.
Click to expand...
thehackernews.com

Exclusive: SonicWall Hacked Using 0-Day Bugs In Its Own VPN Product

Cybersecurity company SonicWall hacked using zero-day vulnerabilities affecting its own NetExtender VPN product
thehackernews.com thehackernews.com
 
  • Wow
  • Like
  • +Reputation
Reactions: CyberTech, Venustus, Kongo and 8 others
silversurfer

silversurfer

Super Moderator
Verified
Top Poster
Staff Member
Malware Hunter
Aug 17, 2014
11,111
www.bleepingcomputer.com

SonicWall fixes actively exploited SMA 100 zero-day vulnerability

SonicWall has released a patch for the zero-day vulnerability used in attacks against the SMA 100 series of remote access appliances.
www.bleepingcomputer.com www.bleepingcomputer.com
Today, SonicWall has released an SMA 100 series firmware 10.2.0.5-29sv update that fixes the actively exploited zero-day vulnerability in the SMA 100 series of devices. "All SMA 100 series users must apply this patch IMMEDIATELY to avoid potential exploitation," SonicWall says.
Impacted SMA 100 devices running affected 10.x firmware and requiring this critical patch include:
  • Physical Appliances: SMA 200, SMA 210, SMA 400, SMA 410
  • Virtual Appliances: SMA 500v (Azure, AWS, ESXi, HyperV)
Click to expand...
 
  • Like
Reactions: CyberTech, Gandalf_The_Grey, ForgottenSeer 85179 and 3 others
You must log in or register to reply here.

Similar threads

upnorth
    • Like
Malware Infecting Sonicwall devices Survives Firmware updates
Replies
0
Views
659
News Archive
upnorth
upnorth
Gandalf_The_Grey
    • Like
    • Wow
US energy firm shares how Akira ransomware hacked its systems
Replies
0
Views
922
News Archive
Gandalf_The_Grey
Gandalf_The_Grey
lokamoka820
    • Like
    • +Reputation
Security News Google Patches Another Zero-Day Vulnerability in Chrome
Replies
6
Views
1,878
Security News
lokamoka820
lokamoka820

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top