SonicWall Confirms Patched Vulnerability Behind Recent VPN Attacks, Not a Zero

SonicWall has revealed that the recent spike in activity targeting its Gen 7 and newer firewalls with SSL VPN enabled is related to an older, now-patched bug and password reuse.

"We now have high confidence that the recent SSL VPN activity is not connected to a zero-day vulnerability," the company said . "Instead, there is a significant correlation with threat activity related to CVE-2024-40766."

CVE-2024-40766 (CVSS score: 9.3) was first disclosed by SonicWall in August 2024, calling it an improper access control issue that could allow malicious actors unauthorized access to the devices.

"An improper access control vulnerability has been identified in the SonicWall SonicOS management access, potentially leading to unauthorized resource access and, in specific conditions, causing

See Full Page

Interests (0)

Settings

SonicWall Confirms Patched Vulnerability Behind Recent VPN Attacks, Not a Zero

Cobb County revolutionizes 911 system with AI-enhanced emergency communication platform

US retailer Best Buy to boost India tech hub staff by over 40%, executive says

Why Instagram's New Map Feature Is Receiving Backlash

Trump demands 'highly conflicted' Intel CEO resign over China ties

OpenAI's GPT-5 is here

Seeing in the dark: How home security camera night vision works

Intel's confusing 'Series 2' CPU brand is a massive step backwards

Nation's Churches Scramble To Upgrade To Y2K

OpenAI's GPT-5 targets coders

Saks Fifth Avenue's AI Virtual Voice Assistant Called Sophie

'Cannot possibly be legal': Trump buried for denying retirement benefits to certain troops

AI Tools Fuel Brazilian Phishing Scam While Efimer Trojan Steals Crypto from 5,000 Victims

Leaked Credentials Up 160%: What Attackers Are Doing With Them

RubyGems, PyPI Hit by Malicious Packages Stealing Credentials, Crypto, Forcing Security Changes

U.S. Army sergeant suspected of shooting, wounding five soldiers at Fort Stewart in Georgia

Trump orders new census excluding undocumented immigrants

Three More 9/11 Victims Identified Through DNA Testing

Terrible thirst hits Gaza with polluted aquifers and broken pipelines

Caesar Creek State Park and Little Miami River following Vice President JD Vance's birthday kayaking trip

Trump doubles reward to $50 million for arrest of Venezuela's president to face US drug charges

CDC Warns Travelers of Chikungunya Virus Outbreak in China

Texas Redistricting Conflict Intensifies as Abbott Seeks Court Action

Trump orders increased federal law enforcement presence in Washington to 'make DC safe again'

Los Angeles Officials Review Legal Options After Immigration Raid