News

This devious ransomware is able to hijack your system to turn off Microsoft Defender

Experts warn Akira is using SonicWall VPNs to deploy two driversOne is a legitimate, vulnerable driver that allows the other ...

Akira ransomware abuses CPU tuning tool to disable Microsoft Defender

Akira ransomware is abusing a legitimate Intel CPU tuning driver to turn off Microsoft Defender in attacks from security ...

Hackers found a way around Microsoft Defender to install ransomware on PCs, report says

A GuidePoint Security report (via BleepingComputer) found that hackers are using Akira ransomware to exploit a legitimate PC ...

SonicWall finds no SSLVPN zero-day, links ransomware attacks to 2024 flaw

SonicWall says that recent Akira ransomware attacks exploiting Gen 7 firewalls with SSLVPN enabled are exploiting an older ...
CSO Online3d

Akira affiliates abuse legitimate Windows drivers to evade detection in SonicWall attacks

Threat researchers at GuidePoint Security have uncovered Akira affiliates abusing legitimate Windows drivers in a previously ...
The Hacker News7d

Akira Ransomware Exploits SonicWall VPNs in Likely Zero-Day Attack on Fully-Patched Devices

Akira ransomware exploits SonicWall SSL VPNs, hitting patched devices. Organizations face risks from possible zero-day flaw.
SecurityWeek2d

SonicWall Says Recent Attacks Don’t Involve Zero-Day Vulnerability

SonicWall investigating reports about a zero-day being exploited in ransomware attacks, but found no evidence of a new ...
JD Supra1d

Ransomware Attacks Target SonicWall Firewall Vulnerability

Ransomware group Akira is believed to be behind a large number of attacks that appear to be tied to SonicWall firewalls with SSLVPN enabled. Over ...
htxt1d

Attackers disable security solutions to install ransomware

GuidePoint Security has discovered attackers exploiting legitimate drivers to gain access to a device. This is accomplished ...
The Hacker News4d

SonicWall Investigating Potential SSL VPN Zero-Day After 20+ Targeted Attacks Reported

Huntress said it detected around 20 different attacks tied to the latest attack wave starting on July 25, 2025, with ...

SonicWall investigates 'cyber incidents,' including ransomware targeting suspected 0-day

SonicWall on Monday confirmed that it's investigating a rash of ransomware activity targeting its firewall devices, following ...

SonicWall says recent attack wave involved previously disclosed flaw, not zero-day

The company said it had linked recent hacks to customers’ use of legacy credentials when migrating from Gen 6 to Gen 7 ...