{"id":18327,"date":"2021-01-23T23:38:24","date_gmt":"2021-01-23T22:38:24","guid":{"rendered":"http:\/\/159.69.82.204\/win\/?p=18327"},"modified":"2021-01-23T23:38:24","modified_gmt":"2021-01-23T22:38:24","slug":"sonicwall-netextender-schwachstelle-ausgenutzt","status":"publish","type":"post","link":"https:\/\/borncity.com\/win\/2021\/01\/23\/sonicwall-netextender-schwachstelle-ausgenutzt\/","title":{"rendered":"Sonicwall NetExtender vulnerability exploited by APT group"},"content":{"rendered":"

[German<\/a>]Sonicwall has been attacked by an ATP group and the attackers probably had access to the provider's code. Sonicwall has already confirmed this. Those who use Sonicwall products should respond.<\/p>\n

<\/p>\n

\"\"SonicWall<\/a> is an IT infrastructure company from the USA that offers firewall and security solutions<\/a>. They claims that SonicWall products and real-time security services can help companies detect Sunburst and Supernova malware, as well as other attacks on vulnerable systems. Now, it seems, they've fallen victim to a cyber attack themselves, due to a 0-day exploit. German blog reader Stefan A. emailed me this evening to alert me about a cyber security incident – thanks for the information. Sonicwall has confirmed an cyber attack within this announcement<\/a> on January 22, 2021. <\/p>\n

\n

Urgent Security Notice: NetExtender VPN Client 10.X, SMA 100 Series Vulnerability<\/p>\n

NOTE:<\/strong> We will continue to update this knowledge base (KB) article as more information and mitigation steps are available. <\/p>\n

SonicWall provides cybersecurity products, services and solutions designed to help keep organizations safe from increasingly sophisticated cyber threats. As the front line of cyber defense, we have seen a dramatic surge in cyberattacks on governments and businesses, specifically on firms that provide critical infrastructure and security controls to those organizations. <\/p>\n

We believe it is extremely important to be transparent with our customers, our partners and the broader cybersecurity community about the ongoing attacks on global business and government. <\/p>\n

Recently, SonicWall identified a coordinated attack on its internal systems by highly sophisticated threat actors exploiting probable zero-day vulnerabilities on certain SonicWall secure remote access products. The impacted products are: <\/p>\n