CISA warns of threat actors targeting “a known, previously patched, vulnerability” found in SonicWall Secure Mobile Access (SMA) 100 series and Secure Remote Access (SRA) products with end-of-life firmware.
As the US federal agency also adds, the attackers can exploit this security vulnerability as part of a targeted ransomware attack.
This alert comes after SonicWall issued an “urgent security notice” and sent emails to warn customers of the “imminent risk of a targeted ransomware attack.”
Even though the company said the risk of ransomware attacks is imminent, Coveware CEO Bill Siegel confirmed CISA’s warning saying that the campaign is ongoing.
CISA urges users and administrators to review the SonicWall security notice and upgrade their devices to the latest firmware or immediately disconnect all end-of-life appliances.