{"id":41727,"date":"2021-01-25T14:30:38","date_gmt":"2021-01-25T14:30:38","guid":{"rendered":"http:\/\/icloud.pe\/blog\/?guid=8494c27e8eb2e4c2c8286289eadfd66c"},"modified":"2021-01-25T14:30:38","modified_gmt":"2021-01-25T14:30:38","slug":"sonicwall-hacked-via-zero-day-flaw-in-remote-access-tools","status":"publish","type":"post","link":"https:\/\/icloud.pe\/blog\/sonicwall-hacked-via-zero-day-flaw-in-remote-access-tools\/","title":{"rendered":"SonicWall hacked via zero-day flaw in remote access tools"},"content":{"rendered":"<p><span class=\"field field-name-field-author field-type-node-reference field-label-hidden\"><br \/>\n      <span class=\"field-item even\"><a href=\"https:\/\/www.cloudpro.co.uk\/authors\/sabina-weston\">Sabina Weston<\/a><\/span><br \/>\n  <\/span><\/p>\n<div class=\"field field-name-field-published-date field-type-datetime field-label-hidden\">\n<div class=\"field-items\">\n<div class=\"field-item even\"><span class=\"date-display-single\">25 Jan, 2021<\/span><\/div>\n<\/p><\/div>\n<\/div>\n<p class=\"short-teaser\">\n<a href=\"https:\/\/www.cloudpro.co.uk\/\" title=\"\" class=\"combined-link\"><\/a><\/p>\n<div class=\"field field-name-body\">\n<p>SonicWall has admitted that it&#8217;s been the target of a\u00a0<a href=\"https:\/\/www.itpro.co.uk\/cyber-attacks\">cyber attack<\/a>\u00a0which saw hackers take advantage of zero-day vulnerabilities in its secure remote access products.<\/p>\n<p>The\u00a0<a href=\"https:\/\/www.itpro.co.uk\/business\/business-strategy\/355467\/nearly-third-of-businesses-lacked-a-network-security-plan-prior\">network security<\/a>\u00a0provider issued a\u00a0<a href=\"https:\/\/www.sonicwall.com\/blog\/2021\/01\/sonicwall-identifies-coordinated-attack-on-netextender-vpn-client-version-10-and-sma-100-series\/\">statement<\/a>\u00a0confirming the incident after being contacted by\u00a0<em><a href=\"https:\/\/www.scmagazine.com\/home\/security-news\/vulnerabilities\/sonicwall-network-attacked-via-zero-days-in-its-vpn-and-secure-access-solutions\/\">SC Media<\/a><\/em>, which received an anonymous tip that SonicWall&#8217;s systems had been breached.<\/p>\n<p>The company stated that it had \u201cidentified a coordinated attack on its internal systems by highly sophisticated threat actors exploiting probable zero-day vulnerabilities on certain SonicWall secure remote access products\u201d.<\/p>\n<p><!--wysiwyg_see-related_plugin--><\/p>\n<p>\nThe company didn\u2019t specify when exactly the incident took place. <em>CloudPro<\/em>\u00a0contacted SonicWall for a timeline of the attack but is yet to receive a response\u00a0from the company.<\/p>\n<p>Over the weekend, SonicWall issued an additional statement which ruled out that its NetExtender\u00a0<a href=\"https:\/\/www.itpro.co.uk\/security\/27098\/best-vpn-services\">VPN<\/a>\u00a0Client product had been compromised, adding that the only products to remain under investigation are from the SMA 100 series which \u201cprovide Secure, Mobile and Remote Access\u201d to SMBs.\u00a0<\/p>\n<p>However, SonicWall clarified that, despite the investigation, all \u201cSMA 100 series products may be used safely in common deployment use cases\u201d.<\/p>\n<p>The company also said that it \u201cfully understands the challenges previous guidance had in a work-from-home environment, but the communicated steps were measured and purposeful in ensuring the safety and security of [its] global community of customers and partners\u201d.<\/p>\n<p>\u201cAs the front line of cyber defense, we have seen a dramatic surge in cyberattacks on governments and businesses, specifically on firms that provide critical infrastructure and\u00a0<a href=\"https:\/\/www.itpro.co.uk\/security\">security<\/a>\u00a0controls to those organizations,\u201d it added.<\/p>\n<p>Despite a decline in the number of security incidents, the last year was deemed as\u00a0<a href=\"https:\/\/www.itpro.co.uk\/security\/357578\/exposed-records-top-36-billion-in-2020-so-far\">the worst for data breaches on record<\/a>.<\/p>\n<p>The news of the incident comes months after SonicWall\u00a0<a href=\"https:\/\/www.itpro.co.uk\/security\/357456\/weekly-threat-roundup-windows-10-adobe-and-sonicwall-vpns\">released patches for a critical vulnerability<\/a>\u00a0in the SonicOS operating system, which is responsible for running SonicWall virtual private network (VPN) appliances. <\/p>\n<\/p><\/div>\n","protected":false},"excerpt":{"rendered":"<p>      Sabina Weston<\/p>\n<p>        25 Jan, 2021    <\/p>\n<p>      SonicWall has admitted that it&#8217;s been the target of a\u00a0cyber attack\u00a0which saw hackers take advantage of zero-day vulnerabilities in its secure remote access products.<br \/>\nThe\u00a0network security\u00a0provid&#8230;<\/p>\n","protected":false},"author":627,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[],"tags":[],"class_list":["post-41727","post","type-post","status-publish","format-standard","hentry"],"_links":{"self":[{"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/posts\/41727","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/users\/627"}],"replies":[{"embeddable":true,"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/comments?post=41727"}],"version-history":[{"count":1,"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/posts\/41727\/revisions"}],"predecessor-version":[{"id":41728,"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/posts\/41727\/revisions\/41728"}],"wp:attachment":[{"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/media?parent=41727"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/categories?post=41727"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/tags?post=41727"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}