Sophos XG firewalls hacked, hotfix ready. Texts wreck Apple iThings. Yup, business as usual in infosec world

2020-04-26 12:04

Sophos XG Firewall hacked in the wild - hotfix available.

Sophos has rushed out a hotfix for its XG Firewall products to close an SQL injection vulnerability - after hackers were spotted exploiting the hole in the wild.

All physical and virtual XG firewalls are vulnerable, we're told, and all supported versions will get a hotfix.

"The attack used a previously unknown SQL injection vulnerability to gain access to exposed XG devices," said Team Sophos.

Known as VictoryGate, the malware infects a mixture of home and business Windows PCs and Internet-of-Things devices.

News URL

https://go.theregister.co.uk/feed/www.theregister.co.uk/2020/04/26/security_roundup_240420/

#apple #firewall #hacked #infosec #sophos

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Apple		131	567	4098	1582	2408	8655
Sophos		70	11	79	43	22	155