TECH

Sophos Firewall zero-day bug exploited weeks before fix

A vulnerability in the Sophos Firewall, first discovered in late March and patched soon afterwards, was being exploited by a Chinese advanced persistent threat (APT), in the weeks before the patch was released, reports have revealed.

Researchers from cybersecurity firm Volexity, the threat actor, known as DriftingCloud, exploited the CVE-2022-1040 since early March, against a number of unnamed entities. It used it to bypass authentication, and run arbitrary code on the victims’ endpoints. The flaw affects the User Portal and Webadmin of Sophos Firewall, and the threat actors managed to install webshell backdoors and other malware.

Follow On Google News

Share this news on your Fb,Twitter and Whatsapp

File source

Times News Express – Breaking News Updates – Latest News Headlines
Times News Express||USA NEWS||WORLD NEWS||CELEBRITY NEWS||POLITICS||TOP STORIES

Show More

Related Articles

Leave a Reply

Your email address will not be published.

Back to top button
Close