Articles Attacks on 0-day vulnerability found in SonicWall products

Attacks on 0-day vulnerability found in SonicWall products


Information security specialists of the NCC Group have discovered that a mysterious zero-day vulnerability in SonicWall’s network devices is already under “indiscriminate” attacks. Since there is still no patch, details of the nature of the bug are not disclosed to prevent other hackers from joining the attacks. SonicWall developers were notified of what was happening last weekend.

One NCC Group expert told ZDNet the following:

“Earlier this week, we noticed that one attacker was already using [0-day]. At that time, we only raised honeypot, so we did not receive a full request. But that prompted us to reverse engineer the request path, and we identified a bug that we believe was exploited by the attacker. ”

At the same time, analysts are convinced that they have discovered the very same zero-day vulnerability, with the help of which a mysterious attacker recently hacked SonicWall itself, penetrating the manufacturer’s internal network.

Let me remind you that at the end of January it became known that SonicWall had suffered during a “coordinated hacker attack.” Representatives of the company still do not report any details about this incident, they only write that Secure Mobile Access (SMA) version 10.x, running on hardware solutions SMA 200, SMA 210, SMA 400, should be considered vulnerable to an unknown 0-day problem. SMA 410 and virtual SMA 500v. Also, SMA 100 series devices are still under investigation.

Must read

28 dangerous extensions detected for Google Chrome and Microsoft Edge

Avast experts have discovered malware hidden in at least 28 third-party...

Why Is It Important To Have Intrusion Detection And Prevention ?

This article describes why detection and prevention of burglaries...

The risk is real: attacks on OT infrastructure

Previously, many believed that attacks on an isolated OT...

Gitpaste-12: Linux bot armed with a dozen exploits

Researchers at Juniper Networks have discovered a Linux scripting...

Saferwall : Open Source Malware Analysis

Saferwall is an open source malware analysis platform. It...

Network Vulnerability Assessment ? Why Should Every Company Do it at least once a Year !

Network vulnerability assessment analyzes a variety of network issues,...

Artificial Intelligence and Cyber Security

As artificial intelligence intrudes into the world of cybersecurity,...

You might also likeRELATED
Recommended to you