Dark Reading

Threat Actor Trojanizes Copy of SonicWall NetExtender VPN App

An unidentifid attacker hid a malicious binary in a tampered copy of a SonicWall VPN product that would have harvested the details of anyone that installed it. SonicWall published threat research on ...
Bleeping Computer

SonicWall SMA VPN devices targeted in attacks since January

A remote code execution vulnerability affecting SonicWall Secure Mobile Access (SMA) appliances has been under active exploitation since at least January 2025, according to cybersecurity company ...
CRN

SonicWall VPN Attacks: Five Key Things To Know

Researchers are reporting active exploitation of a ‘likely’ zero-day vulnerability affecting SonicWall VPN devices. Security researchers are reporting active exploitation of a “likely” zero-day ...
Dark Reading

Akira Hits SonicWall VPNs in Broad Ransomware Campaign

A series of attacks that struck SonicWall VPN customers in recent months may be worse than initially thought. In early August, word got out that Akira ransomware was used in attacks against SonicWall ...
Bleeping Computer

Akira ransomware breaching MFA-protected SonicWall VPN accounts

Ongoing Akira ransomware attacks targeting SonicWall SSL VPN devices continue to evolve, with the threat actors found to be successfully logging in despite OTP MFA being enabled on accounts.
Infosecurity-magazine.com

Uptick in Akira Ransomware Actors Targeting SonicWall VPNs

Security experts have warned of a possible zero-day vulnerability in SonicWall SSL VPNs after noting a surge in ransomware attacks targeting the devices for initial access. Arctic Wolf claimed in a ...