Hackers modify attack routine in attempt to deploy Ragnarok ransomware on networks protected by Sophos firewall

clock • 2 min read

An SQL injection zero-day in the Sophos firewall was exploited to infiltrate corporate networks

Hackers who tried to exploit a zero-day vulnerability in the Sophos XG firewall product to compromise corporate networks in April later modified their strategy to plant ransomware on those networks...

To continue reading this article...

Join Computing

  • Unlimited access to real-time news, analysis and opinion from the technology industry
  • Receive important and breaking news in our daily newsletter
  • Be the first to hear about our events and awards programmes
  • Join live member only interviews with IT leaders at the ‘IT Lounge’; your chance to ask your burning tech questions and have them answered
  • Access to the Computing Delta hub providing market intelligence and research
  • Receive our members-only newsletter with exclusive opinion pieces from senior IT Leaders

Join now

 

Already a Computing member?

Login

You may also like
Citrix alerts users to critical vulnerability in Citrix ADC and Gateway

Threats and Risks

Citrix alerts users to critical vulnerability in Citrix ADC and Gateway

The vulnerability is already under active attack

clock 19 July 2023 • 1 min read
Over 4,000 Sophos firewall servers still vulnerable to code injection vulnerability

Threats and Risks

Over 4,000 Sophos firewall servers still vulnerable to code injection vulnerability

Miscreants could use the bug to launch remote code execution attacks

clock 18 January 2023 • 3 min read

Threats and Risks

4,200 vulnerable D/TLS servers that can be abused to amplify DDoS attacks by 37 times spotted by researchers

Citrix has updated its Netscaler ADCs and advises customers to upgrade

clock 19 March 2021 • 2 min read
Author spotlight

Dev Kundaliya

View profile
More from Dev Kundaliya

Adobe's Figma acquisition could harm innovation, UK regulator

Broadcom cuts workforce at VMware following $69bn acquisition

Upcoming events
06 Dec
03:00PM
Website

Beyond the 9 to 5: How to protect yourself from “after hours” cyber attacks

Register now
14 Mar
06:00PM
Award

DevOps Excellence Awards 2024

Register now
02 May
06:00PM
Award

Security Excellence Awards 2024

Register now

Sign up to our newsletter

The best news, stories, features and photos from the day in one perfectly formed email.

Get the newsletter

More on Hacking

Law firm service provider CTS hit by major cyberattack
Hacking

Law firm service provider CTS hit by major cyberattack

80-200 UK law firms may have been impacted

Vikki Davies
clock 27 November 2023 • 2 min read
Edward VII's Hospital. Source: Wikimedia
Hacking

GCHQ investivgates attack on royal hospital

A third party gained unauthorised access to confidential medical information from King Edward VII's Hospital

Vikki Davies
clock 27 November 2023 • 1 min read
General Electric investigates data theft claimed by IntelBroker hackers
Hacking

General Electric investigates data theft claimed by IntelBroker hackers

Group claims to possess DARPA-related military information, SQL data and documents

Dev Kundaliya
clock 27 November 2023 • 2 min read