SonicWall discloses "coordinated attack" on internal systems

By

Attackers exploited 'probable' zero-day flaws.

Security vendor SonicWall said it identified a "coordinated attack" on its internal systems that exploited "probable" zero-day flaws in at least one of its own products.

SonicWall discloses "coordinated attack" on internal systems

However, the company scaled back an earlier security alert about the incident and clarified which of its products - or more specifically, their use cases - remain under investigation and potentially vulnerable.

SonicWall said that only its Secure Mobile Access (SMA) 100 series appliances remain under investigation. It said other products are safe to use.

Administrators of the SMA 100 series boxes are advised to create specific access rules, or disable Virtual Office and HTTPS administrative access from the internet while SonicWall continues to investigate the vulnerability.

There is currently no further information from SonicWall as to when the attack took place, how long it lasted and what if any information was compromised, and whether or not the the hack affects any of the company's clients.

The company recommends that all SonicWall SMA, firewall and MySonicWall accounts must have multi-factor authentication enabled.

Users should also whitelist Internet Protocol addresses that are allowed to access SMA appliances and NetExtender VPNs, SonicWall said.

Using a firewall to only allow Secure Sockets Layer VPN connections to SMA appliances is also recommended by SonicWall.

No patches are available for the vulnerabilities from SonicWall currently.

Got a news tip for our journalists? Share it with us anonymously here.
Copyright © iTnews.com.au . All rights reserved.
Tags:
networkingsecuritysonicwall

Sponsored Whitepapers

See everything. Do more.
See everything. Do more.
Lindentech Secures Digital Identity with Zero Trust and Microsoft Entra
Lindentech Secures Digital Identity with Zero Trust and Microsoft Entra
Diamond IT Delivers GRC Transformation with Microsoft Purview
Diamond IT Delivers GRC Transformation with Microsoft Purview
Linktech Powers Energy Trader’s Essential Eight Compliance in Just Eight Weeks
Linktech Powers Energy Trader’s Essential Eight Compliance in Just Eight Weeks
Byte Delivers Future-Ready IT: Transforming Endpoint Security and Productivity with a Cloud-First Strategy
Byte Delivers Future-Ready IT: Transforming Endpoint Security and Productivity with a Cloud-First Strategy

Events

Most Read Articles

Cricket Australia to deploy SD-WAN, Teams Calling

Cricket Australia to deploy SD-WAN, Teams Calling
Defence trials AI radiocomms deception technology

Defence trials AI radiocomms deception technology
Optus quietly delays mobile-to-satellite service launch

Optus quietly delays mobile-to-satellite service launch
CSIRO seeks fibre optic provider for WA telescope

CSIRO seeks fibre optic provider for WA telescope
techpartner.news logo
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
"It's an exciting time to be part of the health and aged care sector"
"It's an exciting time to be part of the health and aged care sector"
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Orro claims Australia first with managed digital asset discovery service
Orro claims Australia first with managed digital asset discovery service

Log In

  |  Forgot your password?