Bose Work Remote Promo
Bose Work Remote Mobile Promo
Take Our Survey on Your IoT/Collaboration Plans & You Could Win a 60" 4K UHD Display!
  • Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to footer

My TechDecisions

  • COVID-19 Update
  • Best of Tech Decisions
  • Topics
    • Video
    • Audio
    • Mobility
    • Unified Communications
    • IT Infrastructure
    • Network Security
    • Physical Security
    • Facility
    • Compliance
  • RFP Resources
  • Downloads
  • Podcasts
  • Subscribe
  • Project of the Week
  • About Us
    SEARCH
IT Infrastructure, Network Security, News

SonicWall Says Zero-Day Vulnerabilities In Its Products Led to Hack

A “sophisticated threat actor” has exploited zero-day vulnerabilities on some of SonicWall's secure remote access products.

January 25, 2021 Zachary Comeau Leave a Comment

SonicWall hack

IT security company SonicWall says a “sophisticated threat actor” has exploited zero-day vulnerabilities on some of its secure remote access products.

In a series of posts on its website, the company said it identified a coordinated attack on its internal systems by sophisticated cyber actors via probable zero-day vulnerabilities on certain products. Those impacted products include several versions of its Secure Mobile Access (SMA) series of gateway products.

Products affected are the SMA version 10.x running on SMA 200, SMA 210, SMA 400, SMA 410 physical appliances and the SMA 500v virtual appliance, the company first said on Jan. 22.

A day later, the company updated the notice, saying all generations of SonicWall firewalls are not affected by the vulnerability that impacts the SMA 100.

The company also said the NetExtender 10.x – which it previously identified as having a zero-day – has been ruled out.

“It may be used with all SonicWall products,” the company’s advisory states. “No action is required from customers or partners.”

Further, the company’s SMA 1000 series is not affected, and customers are safe to use the SMA 1000 series and their associated clients.

Read Next: Microsoft Explains How The SolarWinds Attacks Were Able To Be So Elusive For Months

Customers can continue to use NetExtender for remote access with the SMA 100 series, but SMA 100 series administrators are advised to create specific access rules while the company continues to investigate the vulnerability. SonicWave Access Points are also not affected.

However, the company continues to investigate the SMA 100 series, but the products may still be used safely in common deployment use cases. For more details and steps on further mitigation, visit the company’s support page.

The company says it is in everyone’s best interest – customers, channel partners and the tech community at large – to be transparent about ongoing attacks.

“SonicWall provides cybersecurity products, services and solutions designed to help keep organizations safe from increasingly sophisticated cyber threats,” the company says.

“As the front line of cyber defense, we have seen a dramatic surge in cyberattacks on governments and businesses, specifically on firms that provide critical infrastructure and security controls to those organizations.”

SonicWall’s disclosure comes as the tech community continues to realize the impact of the SolarWinds breach. Microsoft, FireEye and several other notable tech and cybersecurity companies have fallen victim to the hack, along with some U.S. government agencies.

However, it’s unclear if SonicWall’s breach is related to those attacks.

Tagged With: Cybersecurity, SonicWall

Related Content:

  • FireEye Microsoft SolarWinds FireEye, Microsoft Detail Additional Malware Linked to SolarWinds…
  • Microsoft Teams AVI-SPL, Unify Square To Co-Deliver Microsoft Teams User…
  • Nureva HDL300 Audio Conferencing System Nureva HDL300 Audio Conferencing Systems Covers Nearly 30…
  • AV installers, intelligent automation benefits, definition, knowledge management automation How Knowledge Management Automation Is Key to Post-Pandemic…

Free downloadable guide you may like:

  • Introducing the IT Pro MBA: Vetting Technology

    At some point in your career there is going to come a time when you are tasked with reviewing and vetting new tech to implement into your company. Sometimes the hardest part of the whole thing is just getting started. In this new series from My TechDecisions, the IT Pro MBA: Vetting Technology guide deep-dives […]

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Get the FREE Tech Decisions eNewsletter

Sign up Today!

Latest Downloads

Introducing the IT Pro MBA: Vetting Technology

At some point in your career there is going to come a time when you are tasked with reviewing and vetting new tech to implement into your company. ...

9 Technology Products to Help Combat COVID-19 Spread in the Workplace

As the Coronavirus continues on and leads us further into uncertainty, the question remains, “when do we return to the office?” For some the answer...

Top 9 Reasons Enterprise IT Leaders Are Moving Their Video Surveillance to the Eagle Eye Cloud

Working in IT has enough challenges without adding in the complications of surveillance video. Things like total cost of maintenance, how the VMA m...

View All Downloads

Would you like your latest project featured on TechDecisions as Project of the Week?

Apply Today!
Sharp Microsoft Collaboration HQ Logo

Learn More About the
Windows Collaboration Display

More from Our Sister Publications

Get the latest news about AV integrators and Security installers from our sister publications:

Commercial IntegratorSecurity Sales

Footer

TechDecisions

  • Home
  • Welcome to TechDecisions
  • Subscribe to the Newsletter
  • Contact Us
  • Media Solutions & Advertising
  • Comment Guidelines
  • RSS Feeds
  • Terms of Use
  • Privacy Policy
  • Twitter
  • Facebook
  • Linkedin

Free Technology Guides

FREE Downloadable resources from TechDecisions provide timely insight into the issues that IT, A/V, and Security end-users, managers, and decision makers are facing in commercial, corporate, education, institutional, and other vertical markets

View all Guides
TD Project of the Week

Get your latest project featured on TechDecisions Project of the Week. Submit your work once and it will be eligible for all upcoming weeks.

Enter Today!

© 2021 Emerald X, LLC. All rights reserved.