Zero-Day Flaw in SonicWall Networking Devices Actively Exploited
Other top news for 2/2/21: Mystery threat actor targeting NoxPlayer users, Trickbot is back in action, Comcast exposed a database containing 1.5 billion records including hashed passwords, much more
Stay tuned for our first special report for 2021, exclusively available to our premium subscribers. Don’t miss out. Subscribe now.
Cybersecurity firm NCC Group said it had spotted active exploitation attempts against a zero-day vulnerability in SonicWall networking devices.
The researchers say they identified the same zero-day flaw used to gain access to SonicWall's own internal network in a security breach the company disclosed on January 23. They recommend multi-factor authentication for all SonicWall devices. (Catalin Cimpanu / ZDNet)
Related: IT Pro, Infosecurity Magazine, SensorsTechForum, Techradar, Bleeping Computer, Ars Technica, CRN
Researchers at ESET say that a mysterious threat actor targets select users of NoxPlayer, a software package that emulates the Android operating system on PCs and Macs.
BigNox software distribution system was hacked and used to deliver malicious updates to select users in Taiwan, Hong Kong, and Sri Lanka. (Dan Goodin / Ars Technica)
Related: ZDNet Secu…
Keep reading with a 7-day free trial
Subscribe to Metacurity to keep reading this post and get 7 days of free access to the full post archives.