SonicWall provides cybersecurity products, services and solutions designed to help keep organizations safe from increasingly sophisticated cyber threats. As the front line of cyber defense, we have seen a dramatic surge in cyberattacks on governments and businesses, specifically on firms that provide critical infrastructure and security controls to those organizations. We believe it is extremely important to be transparent with our customers, our partners and the broader cybersecurity community about the ongoing attacks on global business and government. Recently, SonicWall identified a coordinated attack on its internal systems by highly sophisticated threat actors exploiting probable zero-day vulnerabilities on certain SonicWall secure remote access products. The impacted products are: |
•NetExtender VPN client version 10.x (released in 2020) utilized to connect to SMA 100 series appliances and SonicWall firewalls•Secure Mobile Access (SMA) version 10.x running on SMA 200, SMA 210, SMA 400, SMA 410 physical appliances and the SMA 500v virtual appliance |
IMPORTANT: Organizations with active SMA 100 Series appliances or using NetExtender VPN client 10.x need to read mitigation steps outlined in the following KB article: www.sonicwall.com/support/product-notification/210122173415410 The NetExtender VPN client and SMB-oriented SMA 100 series are used for providing employees/users with remote access to internal resources. For further guidance, please visit: https://www.sonicwall.com/support/product-notification/210122173415410. We will continue to update this knowledgebase (KB) article as more information is available. |
tech-musings