Ransomware attackers are leveraging old SonicWall SRA flaw (CVE-2019-7481)

CrowdStrike Don't miss Featured news Firmware News Ransomware SMBs SonicWall VPN Vulnerability

Since the beginning of the year, various cyber attackers leveraged a slew of zero-day vulnerabilities to compromise different SonicWall solutions. Crowdstrike now warns that a cyber-criminal group is exploiting CVE-2019-7481 – an older SQL injection vulnerability affecting SonicWall Secure Remote Access (SRA) 4600 devices running firmware versions 8.x and 9.x – to penetrate organizations’ networks. “In some recent investigations, CrowdStrike’s Incident Response team has had correlative evidence indicating a root cause via VPN access without … More

The post Ransomware attackers are leveraging old SonicWall SRA flaw (CVE-2019-7481) appeared first on Help Net Security.

Source: help net security.com