Home » IT Securty Articles » SonicWall finds no SSLVPN zero-day, links ransomware attacks to 2024 flaw

SonicWall finds no SSLVPN zero-day, links ransomware attacks to 2024 flaw

August 7, 2025 nsamag Off IT Securty Articles,

What’s new: SonicWall has confirmed that recent Akira ransomware attacks exploiting Gen 7 firewalls with SSLVPN enabled are linked to CVE-2024-40766, a critical access control flaw fixed in August 2024, rather than a zero-day vulnerability. SonicWall advises that many incidents are due to improper migration from Gen 6 to Gen 7 firewalls, where local user passwords were not reset as recommended.

Who’s affected

Organizations using SonicWall Gen 7 firewalls with SSLVPN enabled, particularly those that migrated from Gen 6 without resetting local user passwords.

What to do

Update firmware to version 7.3.0 or later to enhance security features.
Reset all local user passwords, especially those used for SSLVPN.
Disable SSL VPN services and limit connectivity to trusted IP addresses until further notice.

Sources

BleepingComputer

Tags: IT Securty Articles, Network Securty

About The Author

nsamag

Nsauditor Network Security Auditor

Nsauditor is an advanced network security scanner for auditing and monitoring network computers for possible vulnerabilities. The software checks network computers using all potential methods that a hacker might use to attack it.

Buy Now | Download | More

Product Key Explorer

Product Key Explorer is a powerful product key find and product key recovery software for over +10000 software. It recovers product keys from local or network computers.

Buy Now | Download | More

LPR Lost Password Recovery

LPR Lost Password Recovery reveals website, email, social media passwords from Google Chrome, Microsoft Edge and Opera browsers, allows to backup to HTML, CSV, TXT file or copy to clipboard. All features are provided with a user friendly interface.

Buy Now | Download | More

Who’s affected

What to do

Sources

Related posts

About The Author

nsamag