SonicWall, specializing in network security, access security, cloud security, and endpoint security, has nearly 800,000 internet-accessible virtual public network (VPN) appliances needing to be updated and patched due to a fresh vulnerability discovered on October 14.

SonicWall’s SonicOS has been crucially impacted. This operating system runs on SonicWall Network Security Appliance (NSA) devices. The importance of SonicWall NSAs are for firewalls and SSL VPN portals to grant employees access to internal and private networks.

There is a known bug destroying the custom protocols, which is naked on the WAN (public internet). Threat actors only need the devices’ IP addresses to exploit it. As a result, the bug can then ignite a Denial of Service (DoS) and destroy the devices.

To learn more about the critical bug that has been squashed with a 9.4 out of 10 rating for criticality, visit SonicWall’s Security Advisory Vulnerability List.

SpearTip is always alerting on these types of attacks and vulnerabilities. Our 24/7 Security Operations Center (SOC) is overflowing with cybersecurity professionals to monitor and protect your environment. Not only are our cybersecurity teammates continuously preventing cyberattacks, but also able to deploy our proprietary tool, ShadowSpear® in an environment before or after an attack remotely and onsite.