Hackers attempted to exploit zero-day flaw in Sophos firewall to deploy ransomware

CERT-LatestNews SophosNews ThreatsCybercrime VulnerabilitiesAll VulnerabilitiesApplications VulnerabilitiesDBMS VulnerabilitiesHardware VulnerabilitiesLinux VulnerabilitiesNetwork VulnerabilitiesOS
British security software and hardware company Sophos has published an update regarding its investigation into recent cyber attacks where threat actors were attempting to exploit an SQL-injection flaw ( CVE-2020-12271 ) in its XG Firewall devices to deploy Asnarök malware.