Hackers are exploiting a critical zero-day in devices from SonicWall

by
Dan Goodin
from Ars Technica - All content on (#5DM7B)
zeroday-800x534.jpg

Enlarge (credit: Getty Images)

Network security provider SonicWall said on Monday that hackers are exploiting a critical zero-day vulnerability in one of the devices it sells.

The security flaw resides in the Secure Mobile Access 100 series, SonicWall said in an advisory updated on Monday. The vulnerability, which affects SMA 100 firmware 10.x code, isn't slated to receive a fix until the end of Tuesday.

Monday's update came a day after security firm NCC Group said on Twitter that it had detected indiscriminate use of an exploit in the wild." The NCC tweet referred to an earlier version of the SonicWall advisory that said its researchers had identified a coordinated attack on its internal systems by highly sophisticated threat actors exploiting probable zero-day vulnerabilities on certain SonicWall secure remote access products."

Read 7 remaining paragraphs | Comments

index?i=Icrp4t5MfnA:VGo95nUzv-I:V_sGLiPB index?i=Icrp4t5MfnA:VGo95nUzv-I:F7zBnMyn index?d=qj6IDK7rITs index?d=yIl2AUoC8zA
External Content
Source RSS or Atom Feed
Feed Location http://feeds.arstechnica.com/arstechnica/index
Feed Title Ars Technica - All content
Feed Link https://arstechnica.com/
Reply 0 comments