Cybercriminals are actively exploiting a vulnerability in SonicWall firewalls, specifically targeting a flaw in SonicOS, the operating system that powers these devices. This security loophole allows attackers to bypass authentication and hijack active SSL-VPN sessions, providing them with direct access to corporate networks.

 
Not a New Threat

This vulnerability first came to light late last year, when it was revealed that 25,000 internet-accessible firewalls were at risk. By January, it was evident that the flaw had already affected numerous customers. While SonicWall promptly released a security patch, many organizations have yet to implement the update, leaving their systems exposed.

 
A Simple Yet Dangerous Hack

Security researchers published a proof of concept demonstrating how the exploit works. Unfortunately, cybercriminals quickly took advantage of this knowledge, launching attacks against unpatched devices since late last week. According to experts, breaching an outdated SonicOS firewall is alarmingly easy.

 
The Urgent Solution

The fix is straightforward: update your firewall to the latest firmware immediately. Otherwise, it’s only a matter of time before hackers exploit the vulnerability. Firewalls without updates are an easy target for cybercriminals.

For organizations unable to update their systems for any reason, security experts strongly recommend disabling SSL-VPN functionality as a temporary safeguard. Alarmingly, at least 4,500 SonicWall firewalls remained vulnerable as of last week.

Ensuring cybersecurity measures are up to date is no longer optional—it’s essential to protect your network from imminent threats.