A GuidePoint Security report (via BleepingComputer) found that hackers are using Akira ransomware to exploit a legitimate PC ...

Experts warn Akira is using SonicWall VPNs to deploy two driversOne is a legitimate, vulnerable driver that allows the other ...

Ransomware group Akira is believed to be behind a large number of attacks that appear to be tied to SonicWall firewalls with SSLVPN enabled. Over ...

SonicWall says that recent Akira ransomware attacks exploiting Gen 7 firewalls with SSLVPN enabled are exploiting an older ...

Threat researchers at GuidePoint Security have uncovered Akira affiliates abusing legitimate Windows drivers in a previously ...

SonicWall firewall devices have been increasingly targeted since late July in a surge of Akira ransomware attacks, ...

This is done by exploiting a vulnerable driver called rwdrv.sys, which is a legitimate driver used by an Intel CPU tuning ...

GuidePoint Security has discovered attackers exploiting legitimate drivers to gain access to a device. This is accomplished ...

SonicWall investigating reports about a zero-day being exploited in ransomware attacks, but found no evidence of a new ...

Just sloppy setups and sneaky driversSonicWall walks back zero‑day fears, addresses credential reuse—and now driver-based evasion—in Gen 7 and newer VPN attacks What first looked like a zero-day ...

Security researchers say they have evidence that ransomware gangs are hacking into large companies that rely on fully-patched ...

As of mid-July 2025, cybersecurity researchers Arctic Wolf Labs observed an uptick in malicious logins, all coming through SonicWall SSL VPN instances. Since some of the endpoints were fully patched ...