SonicWall alerts: exploit found in wild for access control flaw. | Cyber Security Peek

Cyber Security Peek

September 7, 2024

by

TLDR:

SonicWall has issued an urgent security advisory regarding a critical access control vulnerability (CVE-2024-40766) affecting its firewall products.
The vulnerability is potentially being exploited in the wild and affects SonicWall Firewall Gen 5, Gen 6, and Gen 7 devices running older SonicOS versions.

SonicWall has released patches to address the issue and strongly urges all customers to apply them immediately. The company also recommends implementing workarounds for those unable to patch right away, such as restricting firewall management to trusted sources and enabling Multi-Factor Authentication for SSLVPN users. Organizations using affected SonicWall products should treat this as a high-priority security issue and take prompt action to mitigate the risk of unauthorized access or system crashes.

Users are encouraged to stay vigilant and monitor their networks for any signs of suspicious activity.

Post Views: 46

Priya Patel

Previous Story

Don’t let vulnerabilities allow attackers to run harmful code

Next Story

Safeguard your valuable digital assets with cyber security market’s growth

Latest from News

City sues dark web researcher over ransomware warning in Columbus

TLDR: Columbus, Ohio experienced a major cyberattack by the Rhysida Group, suspected to be linked to Russia. Dark web expert Connor Goodwolf warned the

WETEX 2024 showcasing cutting-edge cybersecurity tech and trends

TLDR: Key Points: WETEX 2024 will spotlight latest cybersecurity technologies and trends. Top showcases include companies specializing in digital transformation, sustainability, and smart grids.

UK huddles countries to discuss worldwide cybersecurity

TLDR: UK convenes nations for talks on global cybersecurity Talks will focus on strengthening global cybersecurity workforces and developing new professional standards Article Summary:

Deadline approaching: Update your Microsoft Windows by October 1st

TLDR: CISA has mandated that three Windows vulnerabilities be patched before October 1 to protect against active exploitation by threat actors. The vulnerabilities impact

Kawasaki hit by cyber attack, RansomHub tagged as culprits

TLDR: Key Points: Kawasaki Motors Europe (KME) confirms cyber attack in early September, causing temporary disruptions. Ransomware gang RansomHub claims responsibility for the attack,