Hackers bypass SonicWall VPN MFA due to incomplete patching

bleepingcomputer.com·May 20, 2026

Threat actors exploited vulnerabilities in SonicWall Gen6 SSL-VPN appliances by brute-forcing VPN credentials and circumventing multi-factor authentication (MFA) to deploy ransomware attack tools.

Ensure that your organization's VPN systems, particularly those using SonicWall Gen6 SSL-VPN appliances, are updated and patched to address known vulnerabilities. Additionally, consider implementing more robust MFA solutions and continuous monitoring to detect and respond to brute-force attempts, as threat actors are actively targeting these systems to deploy ransomware.

Want more content like this?

twixb tracks your favorite blogs and social media, filters by keywords, and delivers personalized key learnings — straight to your inbox.

Create Your Own →Explore Newsfeeds

More from Cybersecurity News

Recent stories curated alongside this one.

risky.biz
Srsly Risky Biz: Politicians ditch Signal for homegrown apps
Tom Uren and James Wilson discuss European governments' attempts to replace Signal with their own encrypted messaging systems due to phishing and sovereignty concerns, highlighting that these new solutions may also face significant challenges. They also address the recently uncovered Fast16 malware, which is linked to a historical campaign aimed at delaying Iran's nuclear program, alongside the notorious Stuxnet worm.
thehackernews.com
Highly Critical Drupal Core Flaw Exposes PostgreSQL Sites to RCE Attacks
Drupal has issued security updates for a critical vulnerability, CVE-2026-9082, in Drupal Core that could allow attackers to execute remote code, escalate privileges, or disclose information, with a CVSS score of 6.5. The issue is linked to a flaw in the database abstraction API.
bleepingcomputer.com
Ukraine identifies infostealer operator tied to 28,000 stolen accounts
Ukrainian cyberpolice, in collaboration with U.S. law enforcement, have identified an 18-year-old from Odesa as a suspect in an infostealer malware operation that targeted users of an online store in California.
darkreading.com
Cyber Pros Can't Decide If AI Is a Good or a Bad Thing
Cybersecurity professionals are both excited and apprehensive about the impact of AI on their field.
darkreading.com
GitHub Confirms Breach, 4K Internal Repos Stolen
GitHub has confirmed a data breach where thousands of repositories were stolen, with the threat group TeamPCP claiming responsibility for the attack.

Browse all Cybersecurity News →

Hackers bypass SonicWall VPN MFA due to incomplete patching

Want more content like this?

More from Cybersecurity News

Srsly Risky Biz: Politicians ditch Signal for homegrown apps

Highly Critical Drupal Core Flaw Exposes PostgreSQL Sites to RCE Attacks

Ukraine identifies infostealer operator tied to 28,000 stolen accounts

Cyber Pros Can't Decide If AI Is a Good or a Bad Thing

GitHub Confirms Breach, 4K Internal Repos Stolen