SonicWall Fell Victim to a Coordinated Hack
Today, in this digital world every company wants its network secure and tries to put different firewalls to protect its network from a cybersecurity breach. However, still, sometimes it becomes hard to protect their network and somehow hackers get their access to the company network and their vulnerabilities get exposed. Network breaches are common nowadays. Cybersecurity companies make sure to provide a secure network-hub by putting different firewalls and security measures around a network. Firewalls act as a barrier between unauthorized traffic to your infrastructure. It blocks every traffic which has no authorization to enter your network.
However, some attacks expose software vulnerabilities and there is no chance to prevent the breach. One of the most dangerous is zero-day vulnerability. As, for the name, it is named after the number of days, it’s been in the wild. Because in this breach, the developer has no time to prevent this attack and put a security patch. As we have discussed, it can happen to anyone and if there are any vulnerabilities in the system which can be easily exploited, then there are more chances of getting hacked easily. This happened to one of our partners and one of the most popular network device vendor companies, named ‘SonicWall’.
Last Friday, SonicWall was attacked by an exploit, which they called a ‘highly sophisticated’ threat. It was identified by engineers at‘SonicWall’. A coordinated attack on their internal systems was identified on Friday. A hacker had exploited a zero-day vulnerability on specific ‘SonicWall’ secure remote access products. On the first release, they told everyone that their SMA100 and Netextender devices were affected by the exploit. However, in the updated release, they mentioned affected and unaffected devices separately. They told their customers in a general way, that several devices were impacted by the exploit. However, on the second day, they released another press release on their website that specific devices were affected, not Netextender, which seems a big relief to their clients and partners. However, after spending hours on investigation they found out that only devices that are parted with their SMA 100 series appliances are having a zero-day vulnerability and they are still in their investigation.
SonicWall was very transparent about the issue, and provided different mitigation advice, they told their customers to enable multi-factor authentication using SonicWall SMA, Firewalls, and MySonicWall accounts. Multi-factor authentication gives extra security to their accounts.
EZETech as a vendor of SonicWall, we play an important part. We provide a series of mitigation. SonicWall recommends their customers to use two-factor authentication for their admin accounts because admin accounts are most important. In the last two months in an aspect of a security breach, SonicWall has become the fourth cybersecurity company to get hacked. The top three were FireEye, Microsoft, Malwarebytes. We have learned that network breaching has now become a serious and frequent matter which needs monitoring and remediation as soon as possible.
At EZETech, we want our clients to stay protected under our service. That is why our team is on alert since the news was released. We are taking all the safety measures and taking all the steps to mitigate this zero-day vulnerability. We will not compromise on the network security of our valuable clients.