Cyberattack on SonicWall

Last Friday SonicWall revealed that it had been the victim
of an attack on its internal systems.

The attackers exploited 0-Day vulnerabilities
in the company's own secure remote access products, these being
the VPN NetExtender client version 10.x and Secure Mobile Access (SMA),
products used to provide users with remote access to
internal resources.

In exclusive statements to The Hacker News, they indicate
that this coordinated attack on their internal systems is highly sophisticated and
exploits 0-Day vulnerabilities in various SonicWall products.

According to information from The Hacker News, the internal systems
de SonicWall comenzaron a fallar a principios de la semana pasada y los
atacantes aprovecharon para acceder al código fuente alojado en GitLab de la
compañía. Está información no ha sido confirmada por SonicWall, agregó que proporcionaría
varias actualizaciones adicionales a medida que haya más información disponible
sobre el ataque.

La compañía ha publicado un aviso indicando a las
organizaciones que utilicen sus productos a hablitar la autentificación
multifactor, restringir el acceso a usuarios y administradores para direcciones
IP públicas y deshabilitar el acceso de NetExtender del firewall.


Leave a Reply

Your email address will not be published. Required fields are marked *

More news
A
Read more »
A researcher manages to hack some concert tickets using AI
Read more »
Una nueva campaña de phishing suplanta a ChatGPT
Read more »
Nintendo suffers a data breach through a supplier
Read more »
Trying to make fun of a scammer is not a very good idea
Read more »