SonicWall Archives - Page 3 of 4

Pierluigi Paganini December 08, 2021

SonicWall strongly urges customers to apply patches to SMA 100 devices

SonicWall strongly urges customers using SMA 100 series appliances to install security patches that address multiple security flaws, some of them rated as critical. Security vendor SonicWall urges customers using SMA 100 series appliances to apply security patches that address multiple security vulnerabilities, some of which have been rated as critical. “SonicWall has verified and […]

Pierluigi Paganini September 24, 2021

CVE-2021-20034 flaw can allow SMA 100 device takeover, patch it now!

SonicWall fixed a critical security flaw, tracked as CVE-2021-20034, that impacts some Secure Mobile Access (SMA) 100 series products that can allow device takeover. SonicWall has addressed a critical security vulnerability, tracked as CVE-2021-20034, that impacting several Secure Mobile Access (SMA) 100 series products. The vulnerability is an improper access control vulnerability that can be […]

Pierluigi Paganini July 18, 2021

HelloKitty ransomware gang targets vulnerable SonicWall devices

BleepingComputer became aware that the recent wave of attacks targeting vulnerable SonicWall devices was carried out by HelloKitty ransomware operators. SonicWall this week has issued an urgent security alert to warn companies of “an imminent ransomware campaing” targeting some of its equipment that reached end-of-life (EoL). Threat actors could target unpatched devices belonging to Secure Mobile Access […]

Pierluigi Paganini July 15, 2021

SonicWall warns of ‘imminent ransomware’ attacks on its EOL products

SonicWall has issued an urgent security alert to warn customers of “an imminent ransomware campaing” targeting EOL equipment. SonicWall has issued an urgent security alert to warn companies of “an imminent ransomware campaing” targeting some of its equipment that reached end-of-life (EoL). Threat actors could target unpatched devices belonging to Secure Mobile Access (SMA) 100 series […]

Pierluigi Paganini July 06, 2021

SonicWall addresses critical CVE-2021-20026 flaw in NSM devices

Positive Technologies experts provide details about potential impact of a recently fixes command injection flaw in SonicWall NSM devices. Positive Technologies researcher Nikita Abramov has provided details about the CVE-2021-20026 command injection vulnerability that affects SonicWall’s Network Security Manager (NSM) product. At the end of May, SonicWall urged its customers to ‘immediately’ address a post-authentication vulnerability, tracked […]

Pierluigi Paganini June 23, 2021

SonicWall finally fixed a flaw resulting from a partially patched 2020 zero-day

A critical vulnerability, tracked as CVE-2021-20019, in SonicWall VPN appliances was only partially patched last year and could allow a remote attacker to steal sensitive data. In October last year, experts reported a critical stack-based Buffer Overflow vulnerability, tracked as CVE-2020-5135, in SonicWall Network Security Appliance (NSA) appliances. At the time of the discovery, security experts from the Tripwire VERT […]

Pierluigi Paganini May 29, 2021

SonicWall fixes an NSM On-Prem bug, patch it asap!

SonicWall urges customers to address a post-authentication flaw that affects on-premises versions of the Network Security Manager (NSM). SonicWall urges customers to ‘immediately’ address a post-authentication vulnerability, tracked as CVE-2021-20026, impacting on-premises versions of the Network Security Manager (NSM). The vulnerability rated with an 8.8 severity score could be simply exploited without user interaction. The flaw could […]

Pierluigi Paganini April 30, 2021

UNC2447 cybercrime gang exploited SonicWall Zero-Day before it was fixed

UNC2447 cybercrime gang exploited a zero-day in the Secure Mobile Access (SMA), addressed by SonicWall earlier this year, before the vendor released a fix. Researchers from FireEye’s Mandiant revealed that a sophisticated cybercrime gang tracked as UNC2447 has exploited a zero-day issue (CVE-2021-20016) in SonicWall Secure Mobile Access (SMA) devices, fixed earlier this year, before […]

Pierluigi Paganini April 21, 2021

3 Zero-Day in SonicWall Enterprise Email Security Appliances actively exploited

Security vendor SonicWall has addressed three zero-day vulnerabilities affecting both its on-premises and hosted Email Security products. SonicWall is warning its customers to update their hosted and on-premises email security products to address three zero-day vulnerabilities that are being actively exploited in the wild. The three vulnerabilities addressed by the security vendor are: CVE-2021-20021: Email Security Pre-Authentication Administrative […]

Pierluigi Paganini February 20, 2021

SonicWall releases second firmware updates for SMA 100 vulnerability

Security provider SonicWall released a new firmware update for an SMA-100 zero-day vulnerability that was exploited in attacks. SonicWall has released a second firmware update for the SMA-100 zero-day vulnerability that was exploited in attacks in the wild. SonicWall disclosed a security breach on January 22, it blamed sophisticated threat actors for the intrusion. On January, 29 […]

SonicWall

SonicWall strongly urges customers to apply patches to SMA 100 devices

CVE-2021-20034 flaw can allow SMA 100 device takeover, patch it now!

HelloKitty ransomware gang targets vulnerable SonicWall devices

SonicWall warns of ‘imminent ransomware’ attacks on its EOL products

SonicWall addresses critical CVE-2021-20026 flaw in NSM devices

SonicWall finally fixed a flaw resulting from a partially patched 2020 zero-day

SonicWall fixes an NSM On-Prem bug, patch it asap!

UNC2447 cybercrime gang exploited SonicWall Zero-Day before it was fixed

3 Zero-Day in SonicWall Enterprise Email Security Appliances actively exploited

SonicWall releases second firmware updates for SMA 100 vulnerability

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

Zero Day Quest returns: Microsoft ups the stakes with $5M bug bounty

Cisco disclosed a CRM data breach via vishing attack

Exposed Without a Breach: The Cost of Data Blindness

SonicWall investigates possible zero-day amid Akira ransomware surge

Chaining NVIDIA's Triton Server flaws exposes AI systems to remote takeover

QUICK LINKS

SonicWall

newsletter

Subscribe to my email list and stay up-to-date!

recent articles

Subscribe to my email list and stay
up-to-date!