SonicWall firewall maker hacked using zero-day vulnerability in its VPN device

Security manufacturer SonicWall has issued an urgency notice on threat actors abusing zero-day vulnerability in their Secure Mobile Access (SMA) VPN device and its NetExtender VPN client to attack their internal systems. According to SonicWall, the impacted products are NetExtender VPN client and Secure Mobile Access. SonicWall warns customers to protect themselves by using multi-factor authentication on affected devices and restricting the access to devices based on whitelisted IP addresses. Read more...