SonicWall has warned customers to disable SSLVPN services due to ransomware gangs potentially exploiting an unknown security vulnerability in SonicWall Gen 7 firewalls to breach networks over the past few weeks.
The warning comes after Arctic Wolf Labs reported on Friday that it had observed multiple Akira ransomware attacks, likely using a SonicWall zero-day vulnerability, since July 15th.
"The initial access methods have not yet been confirmed in this campaign," the Arctic Wolf Labs researchers said. "While the existence of a zero-day vulnerability is highly plausible, credential access through brute force, dictionary attacks, and credential stuffing have not yet been definitively ruled out in all cases."
[...]
SonicWall urges admins to disable SSLVPN amid rising attacks
SonicWall urges admins to disable SSLVPN amid rising attacks
-
rbc
- Secretary
- Posts: 451
- Joined: Mon Oct 30, 2023 1:32 am
- Location: Vicksburg, MS
- ISC2 Member Status: Yes
- Contact:
SonicWall urges admins to disable SSLVPN amid rising attacks
Robert B. Carleton + ISC2 Central Mississippi Secretary