[HackerNews] SonicWall Left a VPN Flaw Partially Unpatched Amidst 0-Day Attacks

A critical vulnerability in SonicWall VPN appliances that was believed to have been patched last year has been now found to be “botched,” with the company leaving a memory leak flaw unaddressed, until now, that could permit a remote attacker to gain access to sensitive information.
The shortcoming was rectified in an update rolled out to SonicOS on June 22. 
Tracked as CVE-2021-20019 (CVSS score

Source: Read More (The Hacker News)

You might be interested in …

[ThreatPost] Black Hat: Charming Kitten Leaves More Paw Prints

All posts, ThreatPost

IBM X-Force detailed the custom-made “LittleLooter” data stealer and 4+ hours of ITG18 operator training videos revealed by an opsec goof. Source: Read More (Threatpost)

Read More

[SANS ISC] ISC Stormcast For Tuesday, November 23rd, 2021 https://isc.sans.edu/podcastdetail.html?id=7768, (Tue, Nov 23rd)

All posts, Sans-ISC

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. Source: Read More (SANS Internet Storm Center, InfoCON: green)

Read More

[ZDNet] JBS USA cyber attack affecting North American and Australian systems

All posts, ZDNet

Food processing company said there’s nothing to suggest that customer or supplier data has been compromised. New Zealand’s Waikato District Health Board, meanwhile, is approaching its third week of disruption following a ransomware attack. Source: Read More (Latest topics for ZDNet in Security)

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.