A leak in the SonicWall SMA 100 series is being actively scanned by hackers today. Immediate patching is the message.
A bug in SonicWall’s firewall products makes its so-called Secure Mobile Access (SMA) products very vulnerable. Specifically, the SonicWall SMA 100 series contains a serious vulnerability that came to light late last year.
In the meantime, SonicWall itself has already released patches for the bugs. The vulnerabilities are specifically in the SMA 200, 210, 400, 410 and 500v. Those with those firewall products can download the patch through their own account. Follow these steps to install them correctly.
Until last week, there was no evidence that hackers were exploiting the vulnerability, but according to Bleeping Computer , that has changed. Hackers are actively scanning for potentially leaking SonicWall hardware and trying to gain access via brute-force. Those using SonicWall SMA 100 hardware are therefore better off changing the password in addition to installing the update to be completely sure.
read also