SonicWall SonicOS firewall devices using its SSLVPN functionality are under active threat from ransomware gangs in the wake of a newly-discovered vulnerability.

The vulnerability, tracked as CVE-2024-40766, has been found in SonicWall’s Gen 5,6, and 7 firewalls. When exploited, it has the potential to allow unauthorized resources access and to disable security settings critical for the company’s roughly 500,000 business customers. 

Multiple ransomware gangs including Akira, HelloKitty and FiveHands have actively exploited this vulnerability in the wild.

SonicWall released a firmware patch against the vulnerability in late August, but many customers have yet to apply it, leaving their cybersecurity in a precarious (putting it mildly) state.

Nodal is committed to ensuring the security of its clients’ resources and is urging any affected business to apply the patch as soon as possible.

If your business uses SonicWall SonicOS devices and are unsure if you’re affected, contact us today.