FireEye finds SonicWall zero-days being exploited in the wild Wednesday, 21 April 2021 10:32 FireEye finds SonicWall zero-days being exploited in the wild
Shares Image by neo tam from Pixabay
Three zero-day vulnerabilities in SonicWall s Email Security product that were being exploited in the wild have been reported by American security firm FireEye s Mandiant Managed Defence unit.
The company has released hotfixes for Windows users and and also for hardware and ESXi virtual appliance users.
In
a detailed blog post, researchers Josh Fleischer, Chris DiGiamo and Alex Pennino said the three flaws were run in conjunction to obtain admin access and execute code on a SonicWall ES device.
Mandiant: MS Exchange bugs first exploited in January
Analysis from technical teams at FireEye’s Mandiant tracked activity exploiting newly disclosed vulnerabilities in Microsoft Exchange Server more than a month ago
Share this item with your network: By Published: 05 Mar 2021 15:00
Malicious actors were abusing four vulnerabilities disclosed this week in on-premise instances of Microsoft Exchange Server as far back as January 2021, according to a new report produced by FireEye Mandiant researchers Matt Bromiley, Chris DiGiamo, Andrew Thompson and Robert Wallace.
Disclosed earlier this week alongside an out-of-sequence patch, exploitation of the four vulnerabilities, one rated critical and three medium, was linked by Microsoft to a Chinese advanced persistent threat (APT) group known as Hafnium, although there is already bountiful evidence to suggest exploitation of the CVEs goes far beyond one group.