SonicWall, a cybersecurity company, experienced breaches into enterprise networks through Fog and Akira ransomware exploiting the VPN vulnerability CVE-2024-40766. The critical flaw led to unauthorized access and potential firewall crashes, impacting Gen 5, 6, and early Gen 7 devices. Despite patches being released, ongoing intrusions via unpatched SSL VPNs have led to a rise in ransomware attacks since August 2024. The vulnerability allowed a rapid pivot from initial access to ransom activities, with a timeline as short as 1.5 hours. The targeted ransomware attacks demonstrate the urgency of applying security updates to prevent severe repercussions, including loss of resources and compromised data.
Source: https://securityaffairs.com/170359/cyber-crime/fog-akira-ransomware-sonicwall-vpn-flaw.html
"id": "Son000103024",
"linkid": "SonicWall",
"type": "Ransomware",
"date": "10/2024",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"