SonicWall Gen 7 Firewalls Under Active Exploitation – Immediate Action Required

SonicWall Gen 7 Firewalls Under Active Exploitation – Immediate Action Required

Over the past 72 hours, a coordinated wave of cyberattacks has begun targeting SonicWall Gen 7 firewalls with SSLVPN enabled, raising serious alarms across the cybersecurity landscape. Emergency alerts have been issued by SonicWall, along with top security firms including Arctic Wolf, Huntress, and Google Mandiant.

This is not a drill — this threat is active, evolving, and dangerous.

What’s Going On?

Cybercriminals are actively exploiting vulnerabilities in SonicWall’s SSLVPN service, potentially bypassing authentication mechanisms — even on devices that are fully patched and have Multi-Factor Authentication (MFA) enabled.

While the root cause is still under investigation, experts suspect this could be a zero-day vulnerability, meaning attackers may be leveraging an unknown flaw to gain unauthorized access.

What You Must Do – Right Now

If your organization uses SonicWall Gen 7 firewalls, we strongly recommend taking the following immediate mitigation steps:

  • Disable SSLVPN entirely if operationally possible.

  • If not, restrict access to trusted IP addresses only.

  • Enable Botnet Protection and Geo-IP Filtering on the firewall.

  • Enforce MFA for all remote access.

  • Audit all user accounts — delete unused or outdated profiles.

  • Review and enforce strong password policies across your network.

These measures are crucial to minimizing your exposure to this highly active threat.

Investigation Status

SonicWall is currently:

  • Working with trusted cybersecurity research partners

  • Preparing firmware updates and security advisories

  • Sharing real-time information through official channels

Until more is known, proactive defense is the best strategy.

Bespoke Technology Group Has You Covered

Our expert cybersecurity team is actively monitoring this situation and ready to help you take action right now. We offer:

  • Firewall configuration audits

  • SSLVPN and MFA best practices implementation

  • Threat response and breach remediation

  • Strategic planning for zero-day and ransomware defenses

Don’t leave your organization exposed. We can help you secure your environment and respond rapidly to today’s most urgent threats.

Schedule your free Cybersecurity Readiness Assessment with Bespoke today.

Scroll to Top