Security News > 2021 > January > SonicWall hit by attackers leveraging zero-day vulnerabilities in its own products?

SonicWall hit by attackers leveraging zero-day vulnerabilities in its own products?
2021-01-25 10:27

On Friday evening, SonicWall announced that it "Identified a coordinated attack on its internal systems by highly sophisticated threat actors exploiting probable zero-day vulnerabilities on certain SonicWall secure remote access products."

"We believe it is extremely important to be transparent with our customers, our partners and the broader cybersecurity community about the ongoing attacks on global business and government," SonicWall said while warning the public about the potential zero-day vulnerabilities in the NetExtender VPN Client and Secure Mobile Access physical and virtual appliances.

On Saturday, the news was more favorable: the NetExtender VPN Client is not affected, and neither are all generations of SonicWall firewalls, SonicWall SonicWave APs, and SMA 1000 series.

Help Net Security has reached out to SonicWall and enquired about the nature of the attack on its internal systems, but we've yet to hear back from them.

SonicWall's cybersecurity solutions are used by U.S. Federal Government agencies, some of which have confirmed that they've been breached by the SolarWinds attackers.

There is still no news about the potential zero-day in the SMA 100 Series, but SonicWall let us know that the guidance to disable Virtual Office and the HTTPS administrative interface no longer applies.


News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/qyXqjh9n2s4/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Sonicwall 113 0 40 74 38 152