SonicWall, a popular internet security provider of firewall and VPN products, disclosed Friday that it fell victim to a coordinated attack on its internal systems. The San Jose-based company said the attacks leveraged zero-day vulnerabilities in SonicWall secure remote access products such as NetExtender VPN client version 10.x and Secure Mobile Access (SMA) that are used to provide users with remote access to internal resources. SonicWall wouldn’t confirm reports that SonicWall’s internal systems went down earlier this week and that source code hosted on the company’s GitLab repository was accessed by the attackers.
Source: https://thehackernews.com/2021/01/exclusive-sonicwall-hacked-using-0-day.html