Sonicwall urges customers to disable SSLVPN amid reports of ransom attacks

SonicWall urges its customers to disable the basic feature of the latest group of protection wall devices after security researchers reported an increase in ransom incidents targeting Sonicwall customers.

in This week’s statementSonicwall said she had noticed a “noticeable increase” of safety accidents targeting the walls of the generation 7, where VPN customers were enabled. The company said that it “is active in these incidents to determine whether it is related to weakness that was previously disclosed or if the new security vulnerability may be responsible.”

The company’s alert comes at a time when security researchers say they have identified infiltrators who target Sonicwall devices for the initial access to the victim network.

Infiltrators Including institution products increasinglyLike protection walls and VPNS, which acts as a digital gatekeeper, allowing legal employees to access the company’s network. But security disadvantages in these products can allow malicious infiltrators in, allowing the attackers to launch data stealing or destroyed attacks.

Security Company Arctic Wolf He said that she had seen interventions Supporting SonicWall customers until mid -July. “The available evidence indicates that there is a security vulnerability for zero day,” the company said, referring to a security error discovered and exploited before the seller can correct the problem.

The researchers said they witnessed a short gap between the exploitation of the Sonicwall Wall and the subsequent publication of the harmful programs that link the files, or ransom programs.

Huntress laboratories, another cyber security company, said that It is “likely” that the zero insect in the walls of Sonicwall is responsible As for attacks, he warned that infiltrators who exploit the error have seen access to the company’s field control units, which manage devices and users on that network.

On her blog, Huntress said she believed that the Akira Ransomware gang is behind some attacks targeting Sonicwall customers. It is known that Akira targets the products of institutions, Like Fortinet protection wallsTo storm large networks.

“This is a decisive and continuous threat,” Hunts wrote.