Akira Ransomware Actively Exploiting SonicWall firewall RCE Vulnerability

SonicWall disclosed a critical remote code execution vulnerability (CVE-2024-40766) in SonicOS on August 22nd, 2024. While no active exploitation was initially confirmed, the advisory was updated on September 6th to indicate potential active attacks. The vulnerability, affecting both management access…

Fog and Akira ransomware attacks exploit SonicWall VPN flaw CVE-2024-40766

securityaffairs.co - 29/Oct 11:51

Fog and Akira ransomware operators are exploiting SonicWall VPN flaw CVE-2024-40766 to breach enterprise networks. Fog and Akira ransomware operators...

SonicWall Vulnerability exploited by Fog and Akira Ransomware

thecyberthrone.in - 30/Oct 02:24

Sonicwall SSL VPN vulnerability tracked as CVE-2024-40766 has been exploited in the recent cyberattacks involving Akira and Fog ransomware. Initial...

Hackers Use Fog Ransomware To Attack SonicWall VPNs And Breach Corporate Networks

itsecuritynews.info - 29/Oct 13:36

Recent cyberattacks involving Akira and Fog threat actors have targeted various industries, exploiting a vulnerability (CVE-2024-40766) in SonicWall...

Fog ransomware targets SonicWall VPNs to breach corporate networks

bleepingcomputer.com - 27/Oct 14:17

Fog and Akira ransomware operators have increased their exploitation efforts of CVE-2024-40766, a critical access control flaw that allows...

Microsoft SharePoint RCE bug exploited to breach corporate network

bleepingcomputer.com - 02/Nov 15:19

A recently disclosed Microsoft SharePoint remote code execution (RCE) vulnerability tracked as CVE-2024-38094 is being exploited to gain initial...

VMware fixes bad patch for critical vCenter Server RCE flaw

bleepingcomputer.com - 22/Oct 14:08

VMware has released another security update for CVE-2024-38812, a critical VMware vCenter Server remote code execution vulnerability that was not...

Massive PSAUX ransomware attack targets 22,000 CyberPanel instances

bleepingcomputer.com - 29/Oct 19:15

Over 22,000 CyberPanel instances exposed online to a critical remote code execution (RCE) vulnerability were mass-targeted in a PSAUX ransomware...

VMware failed to fully address vCenter Server RCE flaw CVE-2024-38812

securityaffairs.co - 22/Oct 07:30

VMware addressed a remote code execution flaw, demonstrated in a Chinese hacking contest, for the second time in two months. VMware failed to fully...

Millions of Synology NAS devices vulnerable to zero-click attacks (CVE-2024-10443)

itsecuritynews.info - 14:36

Synology has released fixes for an unauthenticated “zero-click” remote code execution flaw (CVE-2024-10443, aka RISK:STATION) affecting its...

Fortinet Updates Guidance and Indicators of Compromise following FortiManager Vulnerability Exploitation

itsecuritynews.info - 30/Oct 18:09

Fortinet has updated their security advisory addressing a critical FortiManager vulnerability (CVE-2024-47575) to include additional workarounds and...

Rubriques :