Hacker using backdoor to exploit SonicWall Secure Mobile Access to steal credentials
A threat actor has used a patched vulnerability in SonicWall software
The group is tracked as UNC6148
This allowed UNC6148 to potentially steal credentials and deploy ransomware
A financially motivated threat actor, tracked by Google's Threat Intelligence Group as UNC6148, has been observed targeting patched end-of-life SonicWall Secure Mobile Access (SMA) 100 series appliances.
These attacks, Google determines with 'high confidence', are using credentials and one-time passwords (OTP) seeds that were obtained through previous instructions, which has allowed them to re-access even after organizations have updated their security.
A zero-day remote code execution vulnerability, Google says with 'moderate confidence', was used to deploy OVERSTEP on the targeted SonicWall SMA appliances. The threat intelligence group also 'assesses with moderate confidence that UNC6148's operations, dating back to at least October 2024, may be to enable data theft and extortion operations, and possibly ransomware deployment.'
UNC6148
The previously unknown persistent backdoor/user-mode rootkit, OVERSTEP, was deployed by the actor. This malware modifies the appliance's boot process to allow persistent access, steal sensitive credentials, and then hide its own components;
'An organization targeted by UNC6148 in May 2025 was posted to the "World Leaks" data leak site (DLS) in June 2025, and UNC6148 activity overlaps with publicly reported SonicWall exploitation from late 2023 and early 2024 that has been publicly linked to the deployment of Abyss-branded ransomware (tracked by GTIG as VSOCIETY),' Google continued.
Earlier in 2025, SonicWall firewalls were hit by a worrying cyberattack, in which a vulnerability was leveraged by threat actors to gain access to target endpoints, interfere with the VPN, and further disrupt the target further.
These attacks highlight the importance of updating software as soon as patches become available. Organizations which fail to keep on top of system updates can be left vulnerable to known-exploits. If it's too daunting of a task, take a look at our choices for the best patch management software for a helping hand.
You might also like
Pegasus spyware is still targeting top business leaders
Take a look at the best encrypted messaging apps
Check out our choice for best malware removal software around
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Yahoo
3 hours ago
- Yahoo
FNZ partners with Microsoft to enhance wealth management through technology
Wealth management platform FNZ has entered into a five-year global strategic partnership with Microsoft to advance the wealth management sector through technological innovation and AI-driven solutions. This collaboration merges FNZ's expertise in wealth management and its global presence with Microsoft's capabilities in AI, cloud infrastructure, and engineering. The integration of Microsoft Azure AI Foundry into FNZ's platform is expected to enhance interactions among financial institutions, advisors, and clients, providing more tailored and efficient digital wealth management experiences. FNZ anticipates that this partnership will enable quicker market introductions of new solutions, improve client outcomes, enhance advisor productivity, and foster innovation within the industry. Microsoft worldwide financial servicescorporate vice president Bill Borden said: 'Together, we are not just upgrading technology. We are setting a new standard for how wealth management is delivered. 'Partnering with Microsoft further advances our mission to open up wealth, by making investing more accessible to more people worldwide.' The collaboration aims to enhance the advisor and investor experience by integrating Azure AI Foundry capabilities and improving data analytics applications with Microsoft Fabric. It will also engage joint engineering initiatives to develop innovative digital wealth solutions. Additionally, FNZ plans to implement Microsoft 365 Copilot and intelligent agents to streamline operational processes. The partnership will also involve coordinated global marketing initiatives and participation in industry events to promote modular wealth solutions through various channels, including the Microsoft Marketplace. FNZ Group president Roman Regelman said: 'FNZ has always been at the forefront of innovation in wealth-management technology. 'Partnering with Microsoft allows us to accelerate our AI-led roadmap and enhances our ability to deliver personalised, intelligent and resilient solutions to our clients, strengthening our position of leadership.' FNZ currently partners with over 650 financial institutions, serves more than 26 million end investors, and manages nearly $2tn in assets. It is supported by major institutional investors such as Caisse de dépôt et placement du Québec, Canada Pension Plan Investment Board, Generation Investment Management, and Motive Partners. "FNZ partners with Microsoft to enhance wealth management through technology" was originally created and published by Private Banker International, a GlobalData owned brand. The information on this site has been included in good faith for general informational purposes only. It is not intended to amount to advice on which you should rely, and we give no representation, warranty or guarantee, whether express or implied as to its accuracy or completeness. You must obtain professional or specialist advice before taking, or refraining from, any action on the basis of the content on our site. Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
Yahoo
3 hours ago
- Yahoo
Corning forecasts upbeat quarterly core sales on AI-driven demand
(Reuters) -Specialty glass maker Corning forecast third-quarter core sales above Wall Street estimates on Tuesday, led by artificial intelligence-driven demand for its optical connectivity products. Shares of the company rose about 6% in premarket trading. AI has been a growth driver for Corning's products, such as cables and connectors, which are increasingly used by hyperscale data centers to support the massive computing and data transmission demands. "We also expect an additional growth driver to emerge in the coming months, as new and existing customers seek to leverage our large U.S. advanced manufacturing footprint," CEO Wendell Weeks said. Based in New York, Corning also sells a break-resistant Gorilla Glass for mobile phones, tablets and smart watches, and has produced durable glass with infused color for the back of Apple's iPhone 15 and iPhone 15 Plus devices. Earlier this month, EU antitrust regulators accepted Corning's offer to waive exclusive deals with mobile phone makers and glass processing companies and scrap purchasing clauses to end an eight-month-long investigation and stave off a possible fine. Corning's largest unit - Optical communications - reported net sales of $1.57 billion in the second quarter, a rise of 41% from a year ago. Its core sales in the quarter rose 12% to $4.05 billion, compared with estimates of $3.86 billion, according to data compiled by LSEG. Corning expects third-quarter core sales to be around $4.2 billion, beating estimates of $4.01 billion. The company expects quarterly core earnings per share between 63 cents and 67 cents, compared with estimates of 61 cents. Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
Yahoo
3 hours ago
- Yahoo
Is It Ethereum's Turn to Rally? 3 Reasons This Leading Crypto Could Be About to Climb Even Higher.
Key Points Ethereum was falling sharply in the first half of the year. It's now climbing rapidly. There are solid reasons to suspect that the climb will continue for a good while. 10 stocks we like better than Ethereum › Through this past spring, Ethereum (CRYPTO: ETH), the second‑most valuable cryptocurrency, slogged along as investors fretted about scaling, regulation, and lackluster demand. Fast-forward to July, and the coin has roared back to life, forcing skeptics to ask whether the comeback has legs. It's up 56% during the past 30 days alone (as of July 28). No crystal ball can promise where prices will stand tomorrow, but three forces are converging that make a fresh advance look plausible, so let's dive in and explore the prospects of Ethereum flying higher. 1. Reversion to the mean Markets rarely stay depressed forever, and Ethereum was a textbook case of an oversold crypto with persistently abysmal sentiment. From January to mid-June, its price tumbled, at one point being down by more than 50% year to date. Even diehard evangelists were starting to publicly fold their positions after years of holding. By June 20, the amount of positive social chatter about the chain was at multiyear lows -- but the recovery was already quietly underway by then. Meanwhile, the network kept adding roughly 1 million new wallets per week, evidence that adoption hadn't stalled. That disconnect didn't last too long. Ethereum has more than doubled since April, jumping from the low $1,800s to around $3,800 as of July 28. There's also still no evidence of froth that often caps bull cycles. In other words, the crowd is now increasingly optimistic but not exuberant, which is a setup that can support further upside so long as macro winds stay calm. 2. The Pectra update is working as intended The second catalyst is that on May 7, Ethereum pushed the Prague‑Electra update, better known as Pectra. The update introduces higher validator staking limits, lighter wallets that feel more like regular apps and can operate smart contracts, and twice the data room for Layer 2s (L2s), which also helps with scaling the chain's throughput. Furthermore, bigger validator limits let institutions compound staking rewards, and cheaper L2 roll‑ups translate into lower transaction fees for everyday users. If activity rises because Ethereum is faster and less clunky, demand for the coin should increase. Bugs are always a risk after any upgrade, yet so far network stability looks solid. And that means the party for holders is likely to continue. 3. Capital is gushing in Institutions are directing a firehose of cash toward exchange-traded funds (ETFs) that hold Ethereum, and it's having a big impact on the price. In the week ended July 19, U.S.-based spot Ethereum funds absorbed nearly $2.2 billion, including an impressive single‑day haul of $726.7 million on July 16. Each new ETF share minted requires issuers to buy coins in the open market, shrinking supply and nudging prices higher. Because institutions tend to build positions in stages, the first wave of buying is rarely the last. That steady purchasing activity is a structural tailwind Ethereum has never enjoyed at this scale until now. Additionally, there are a handful of businesses that are seeking to become crypto treasuries that hold Ethereum as one of their main assets. These buyers are keen to issue new shares of their stock, as well as new debt, with the sole goal of buying and holding the coin. Though the wisdom of this approach in the long haul remains to be seen, for now these treasuries are price-insensitive buyers, and they're a big part of the reason Ethereum is climbing so stridently now in a way that it wasn't before. And, if past heydays are any indication, there will be a lot more well-heeled buyers of this type coming along before there's any kind of slowdown. Taken together, a sentiment reset, a smoother and cheaper network, and significant inflows of capital from ETFs and treasurers tilt the odds toward more upside for Ethereum. Long‑term investors may look back on this summer as a moment when the chain's fundamentals finally started to really catch up with its promise. Should you invest $1,000 in Ethereum right now? Before you buy stock in Ethereum, consider this: The Motley Fool Stock Advisor analyst team just identified what they believe are the for investors to buy now… and Ethereum wasn't one of them. The 10 stocks that made the cut could produce monster returns in the coming years. Consider when Netflix made this list on December 17, 2004... if you invested $1,000 at the time of our recommendation, you'd have $636,628!* Or when Nvidia made this list on April 15, 2005... if you invested $1,000 at the time of our recommendation, you'd have $1,063,471!* Now, it's worth noting Stock Advisor's total average return is 1,041% — a market-crushing outperformance compared to 183% for the S&P 500. Don't miss out on the latest top 10 list, available when you join Stock Advisor. See the 10 stocks » *Stock Advisor returns as of July 28, 2025 Alex Carchidi has positions in Ethereum. The Motley Fool has positions in and recommends Ethereum. The Motley Fool has a disclosure policy. Is It Ethereum's Turn to Rally? 3 Reasons This Leading Crypto Could Be About to Climb Even Higher. was originally published by The Motley Fool
