Lucene search
K

4 matches found

The Hacker News
The Hacker News
added 2021/06/23 5:11 a.m.1682 views

SonicWall Left a VPN Flaw Partially Unpatched Amidst 0-Day Attacks

A critical vulnerability in SonicWall VPN appliances that was believed to have been patched last year has been now found to be "botched," with the company leaving a memory leak flaw unaddressed, until now, that could permit a remote attacker to gain access to sensitive information. The shortcomin...

9.8CVSS9.6AI score0.26869EPSS
Exploits0
CISA
CISA
added 2021/05/06 12:0 a.m.51 views

CISA Releases Analysis Reports on New FiveHands Ransomware

CISA is aware of a recent, successful cyberattack against an organization using a new ransomware variant, known as FiveHands, that has been used to successfully conduct a cyberattack against an organization. CISA has released AR21-126A: FiveHands Ransomware and MAR-10324784-1.v1: FiveHands...

6.8AI score
Exploits0References4
The Hacker News
The Hacker News
added 2021/04/30 1:1 p.m.206 views

Hackers Exploit SonicWall Zero-Day Bug in FiveHands Ransomware Attacks

An "aggressive" financially motivated threat group tapped into a zero-day flaw in SonicWall VPN appliances prior to it being patched by the company to deploy a new strain of ransomware called FIVEHANDS. The group, tracked by cybersecurity firm Mandiant as UNC2447, took advantage of an "improper S...

9.8CVSS1AI score0.40038EPSS
Exploits0
FireEye
FireEye
added 2021/04/29 12:0 a.m.371 views

UNC2447 SOMBRAT and FIVEHANDS Ransomware: A Sophisticated Financial Threat

Mandiant has observed an aggressive financially motivated group, UNC2447, exploiting one SonicWall VPN zero-day vulnerability prior to a patch being available and deploying sophisticated malware previously reported by other vendors as SOMBRAT. Mandiant has linked the use of SOMBRAT to the...

7.5CVSS9.5AI score0.40038EPSS
Exploits0References7
Rows per page
Query Builder