Information Security News mailing list archives

Previous By Date Next
Previous By Thread Next

Hackers are exploiting a Sophos firewall zero-day

From: InfoSec News <alerts () infosecnews org>
Date: Mon, 27 Apr 2020 06:58:13 +0000 (UTC)
https://www.zdnet.com/article/hackers-are-exploiting-a-sophos-firewall-zero-day/

By Catalin Cimpanu
Zero Day
ZDNet
April 26, 2020
Cyber-security firm Sophos has published an emergency security update on Saturday to patch a zero-day vulnerability in its XG enterprise firewall product that was being abused in the wild by hackers.
Sophos said it first learned of the zero-day on late Wednesday, April 22, after it received a report from one of its customers. The customer reported seeing "a suspicious field value visible in the management interface."
After investigating the report, Sophos determined this was an active attack and not an error in its product. 

HACKERS ABUSED AN SQL INJECTION BUG TO STEAL PASSWORDS
"The attack used a previously unknown SQL injection vulnerability to gain access to exposed XG devices," Sophos said in a security advisory today. 

[...]



--
Subscribe to InfoSec News
https://www.infosecnews.org/subscribe-to-infosec-news/
https://twitter.com/infosecnews_
Previous By Date Next
Previous By Thread Next

Current thread: