Tag: SonicWALL | SpinSafe

SonicWall devices infected with persistent malware by suspected Chinese hacking campaign: Report

March 10, 2023/in Computer Security

Devices from SonicWall, an American cybersecurity company were found to be infected by persistent malware.
| Photo Credit: Special Arrangement

Devices from SonicWall, an American cybersecurity company that sells internet appliances directed at content control and network security, were found to be infected by persistent malware.

Aimed at gaining privileged access within the appliance, the malware was found to be able to steal hashed credentials from logged-in users which would later be retrieved to be cracked online.

Originating from a suspected Chinese hacking campaign, the attack involves maintaining long-term persistence by running malware on an unpatched SonicWall Secure Mobile Access (SMA) appliance, a blog post from Madiant said.

Attackers used an ELF binary, the TinyShell backdoor, and several bash scripts that point to a deep understanding of the targeted network devices.

(For top technology news of the day, subscribe to our tech newsletter Today’s Cache)

The malware used on SonicWall devices was found to enter the devices through a bash script named firewalld, which is responsible for executing an SQL command to accomplish credential stealing and execution of other components, the post said.

Attackers also made efforts to ensure the malware would persist across firmware updates by running a startup script at boot time along with a secondary script that allowed the malware to persist in case of exit or crash.

While it is unclear what vulnerability was used to compromise devices, the malware or a predecessor of it was likely deployed in 2021 and is believed to have persisted through multiple firmware updates.

“In recent years Chinese attackers have deployed multiple zero-day exploits and malware for a variety of internet-facing network appliances as a route to full enterprise intrusion, and the instance reported here is part of a recent pattern that Mandiant expects to continue in the near term”, the company said in the post.

Source…

Top Most used firewalls for Network security | Best Firewalls world wide

December 25, 2022/in Video

SonicWall threat report mid-year update highlights significant threat variance

September 15, 2022/in Computer Security

The cyber threat landscape is continuing to become increasingly diverse. With COVID-19 and many geopolitical crises occurring worldwide, threat actors are capitalising on various cybersecurity gaps, and, as a result, enterprises and end users are often put at risk.

The 2022 SonicWall Cyber Threat Report mid-year update from SonicWall gives an in-depth insight into many of the current trends across the threat landscape. It has also revealed some alarming statistics about the state of enterprise security on the whole.

Concerningly, the report noted a 77% rise in IoT malware and a 132% leap in encrypted threats sent via HTTPS. Both of these pose significant threats to those with outdated and underutilised security resources, prompting a substantial call to action to further bolster security among organisations.

On a wider scale, 2.8 billion malware attacks (an increase of 11%) were recorded in the first half of 2022. This marked the first escalation of global malware volume in more than three years.

Ransomware was also found to be a significant concern. Even in decline, year-to-date ransomware volume exceeded full-year totals of 2017, 2018 and 2019, sitting at 236.1 million for the first half of 2022.

And while the report notes many previously seen threats and groups, a significant increase of never-before-seen malware variants was also discovered by SonicWall, with the total increase being up 45%.

But while there are threats that are increasing at rapid rates, there are also many variations and declines as well. An overall drop in threats across the board of 23% was mentioned, signifying a change in the way threat actors are approaching targets.

SonicWall VP sales APJ Debasish Mukherjee says that this can sometimes become quite confusing for consumers and enterprises, as they do not know the best ways to protect themselves or where to focus their security resources.

“From year on year, what we are seeing is some types of threats are decreasing and some are increasing. This is often a little confusing for everyone, when sometimes we see that ransomware is increasing and malware is decreasing, or malware is increasing and ransomware is decreasing,” he says.

Mukherjee…

Source…

SonicWall Earns Prestigious 2022 CRN Annual Report Card Award for Enterprise Network Security

August 21, 2022/in Mobile Security

Solution providers score SonicWall highest as top-performing channel provider for enterprise network security

MILPITAS, Calif., Aug. 21, 2022 /PRNewswire/ — SonicWall today announced that CRN, a brand of The Channel Company, named the cybersecurity leader as one of the winners in the Enterprise Network Security category of the 2022 CRN Annual Report Card (ARC) Awards. This award honors the industry’s top technology vendors for success in providing high levels of satisfaction for channel partners through innovative products, services and partner programs.

“As a 100% channel company, we remain completely committed to delivering our partners and customers with the absolute best products and support to face today’s increasingly complicated security challenges,” said SonicWall President and CEO Bob VanKirk. “We’re excited to be recognized by CRN, especially knowing that they celebrate best-in-class vendors that are committed to driving partner growth and demonstrating outstanding channel performance. SonicWall is uniquely positioned to help partners, including MSSPs, evolve and help facilitate their growth.”

With 37 years of history, CRN’s ARC Awards recognize best-in-class vendors devoted to boosting IT channel growth through innovation in technology and partner strategy. Through the ARC Awards — known as one of the most prestigious honors in the IT industry — solution providers offer key feedback that commends technology manufacturers for designing channel-friendly product offerings, developing strong partner programs, and building long-term successful relationships with solution providers.

SonicWall’s SecureFirst Partner Program and its industry-leading security products help partners and MSSPs exceed customer demands. More than 17,000 active SonicWall partners help protect our customers every day, and because of them SonicWall is one of the unquestioned leaders in the cybersecurity space.

The ARC Awards are based on an invitation-only research survey conducted by The Channel Company. Responses from 3,000 solution providers across North America were evaluated in this year’s survey, rating 82 vendor partners across four criteria: product innovation, support, partnership, and…

Source…

Tag Archive for: SonicWALL