Sales: 844.796.1717   •   Support: 801.999.4767
  • Support Portal
  • Payment Portal
  • Remote Support
Protek Support
  • Services
    • Utah Managed IT Services
    • Cloud Services
    • IT Strategy
    • IT Security
    • Disaster Recovery
  • About Us
  • Resources
  • Contact Us
See Service Pricing

Security ALERT – Sonicwall Breach

Security ALERT – Sonicwall Breach
Written By   Eric Woodard, CISSP
January 22, 2021 Cyber Security
Cyber Security Company Utah

At Protek Support we like to keep our clients informed about any security breaches that could affect their network. As a SonicWall partner, the majority of our clients use SonicWall appliances for their firewall.

Today, SonicWall announced a major security breach that affects their SMA 100 series products. The breach involved a coordinated attack on SonicWall’s internal systems by “highly sophisticated threat actors exploiting probable zero-day vulnerabilities on certain SonicWall secure remote access products,” 

Protek Support has looked at the networks of all of our clients and have found no compromised products. Additionally, according to SonicWall, “All generations of SonicWall firewalls are not affected by the vulnerability impacting the SMA 100 series. No action is required from customers or partners.”

If you do happen to have an SMA 100 Series appliance from SonicWall, make sure you follow their recommendations to secure the device, which include:

  • Enable two-faction authentication (2FA) on SMA 100 series appliances
  • Enable Geo-IP/botnet filtering and create a policy blocking web traffic from countries that do not need to access your applications.
  • Enable and configure End Point Control (EPC) to verify a user’s device before establishing a connection.
  • Restrict access to the portal by enabling Scheduled Logins/Logoffs

As evidenced by this targeted attack, MSP vendors like SonicWall are big targets for threat actors. When an attacker hits an MSP they can affect many companies at once instead of targeting other companies and just getting the single company. These vendors need to be even more diligent, and take additional measures to protect themselves like using security awareness training.

If this breach ends up extending to products that Protek Support clients utilize we will be sure to let you know.

Share:
Eric Woodard

Eric is the owner and CEO of Protek Support and is a CISSP (Certified Information Systems Security Professional). He graduated from Utah State University with a Bachelors of Science degree in Business with an emphasis in Information Technology (IT). He is an IT Services expert in a variety of technology related fields. Some of these fields include document management software/hardware, enterprise level networking and VoIP phone systems, as well as large scale software implementation projects and the setup of small business networks.

Related Posts

May 17, 2021

What is Microsoft Secure Score and Why Does it Matter?

April 15, 2021

10 Ways to Keep Your Network Safe From Cyber Criminals

Recent Posts

  • File Sharing 101 and How to help eliminate risk
  • All about Microsoft Edge and why you should make the switch
  • Why you should use Microsoft Outlook on your mobile device
  • 2021 Hardware Shortages & Delays: What to expect?
  • Your Laptop Was Stolen, What To Do Next?

Archives

Categories

Address: 542 W 9320 S, Sandy, UT 84070
Phone: 801.999.4767