SC Magazine has the story – “SonicWall network attacked via zero day in its secure access solution”.
Here is the formal SonicWall statement once they were notified by SC Media:
SonicWall, whose product line includes firewalls; network security and access solutions; and email, cloud and endpoint security solutions acknowledged that an incident took place in a company statement late that evening. “Recently, SonicWall identified a coordinated attack on its internal systems by highly sophisticated threat actors exploiting probable zero-day vulnerabilities on certain SonicWall secure remote access products,” the statement reads.
This is a tragedy and as of now (I guess a day later) the main page no longer has the link on it, although the blog still has the statement above and more.
Fortunately their customer firewalls and other devices were not hacked it was only some specific systems in their internal network.
First SolarWinds and now SonicWall, companies that one expects to be leaders in the cybersecurity field, or at least one assumes they can take care of their own network.
The following machines are being investigated (from SonicWall statement):
Recently, SonicWall identified a coordinated attack on its internal systems by highly sophisticated threat actors exploiting probable zero-day vulnerabilities on certain SonicWall secure remote access products. The impacted products are:
Secure Mobile Access (SMA) version 10.x running on SMA 200, SMA 210, SMA 400, SMA 410 physical appliances and the SMA 500v virtual appliance
Everyone needs to be aware that the criminals are upping their games, and it is nigh time to also increase your cybersecurity game for 2021 if you have not already.
This is important and it is why I am trying to help small businesses with a book coming soon : https://oversitesentry.com/book-email-list/
Click on the link and get a free webcam cover for joining our email list.
or Contact us to discuss.