Security News > 2024 > October > Fog ransomware targets SonicWall VPNs to breach corporate networks
2024-10-27 14:17
Fog and Akira ransomware operators have increased their exploitation efforts of CVE-2024-40766, a critical access control flaw that allows unauthorized access to resources on the SSL VPN feature of SonicWall SonicOS firewalls. [...]
News URL
Related news
- CISA tags SonicWall VPN flaw as actively exploited in attacks (source)
- SonicWall SMA VPN devices targeted in attacks since January (source)
- Marks & Spencer breach linked to Scattered Spider ransomware attack (source)
- SonicWall warns of more VPN flaws exploited in attacks (source)
- Attackers exploited old flaws to breach SonicWall SMA appliances (CVE-2024-38475, CVE-2023-44221) (source)
- Play Ransomware Exploited Windows CVE-2025-29824 as Zero-Day to Breach U.S. Organization (source)
- SonicWall urges admins to patch VPN flaw exploited in attacks (source)
- 3AM ransomware uses spoofed IT calls, email bombing to breach networks (source)
- Interlock ransomware claims Kettering Health breach, leaks stolen data (source)
Related Vulnerability
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-23 | CVE-2024-40766 | Unspecified vulnerability in Sonicwall Sonicos An improper access control vulnerability has been identified in the SonicWall SonicOS management access, potentially leading to unauthorized resource access and in specific conditions, causing the firewall to crash. | 9.8 |