Bleeping Computer

New NachoVPN attack uses rogue VPN servers to install malicious updates

A set of vulnerabilities dubbed "NachoVPN" allows rogue VPN servers to install malicious updates when unpatched Palo Alto and SonicWall SSL-VPN clients connect to them. AmberWolf security researchers ...
CRN

SonicWall Rules Out VPN Compromise, Flaw Limited To SMA Tool

A day after disclosing a sophisticated cyberattack against its internal systems, SonicWall updated its guidance to tell customers its NetExtender VPN client doesn’t have a zero-day vulnerability after ...