News

Hackers found a way around Microsoft Defender to install ransomware on PCs, report says
A GuidePoint Security report (via BleepingComputer) found that hackers are using Akira ransomware to exploit a legitimate PC ...
Akira ransomware abuses CPU tuning tool to disable Microsoft Defender
Akira ransomware is abusing a legitimate Intel CPU tuning driver to turn off Microsoft Defender in attacks from security ...
This devious ransomware is able to hijack your system to turn off Microsoft Defender
Experts warn Akira is using SonicWall VPNs to deploy two driversOne is a legitimate, vulnerable driver that allows the other ...
SonicWall finds no SSLVPN zero-day, links ransomware attacks to 2024 flaw
SonicWall says that recent Akira ransomware attacks exploiting Gen 7 firewalls with SSLVPN enabled are exploiting an older ...
Hackers can bypass Microsoft Defender to install ransomware on PCs
This is done by exploiting a vulnerable driver called rwdrv.sys, which is a legitimate driver used by an Intel CPU tuning ...
CSO Online3d
Akira affiliates abuse legitimate Windows drivers to evade detection in SonicWall attacks
Threat researchers at GuidePoint Security have uncovered Akira affiliates abusing legitimate Windows drivers in a previously ...
The Hacker News7d
Akira Ransomware Exploits SonicWall VPNs in Likely Zero-Day Attack on Fully-Patched Devices
Akira ransomware exploits SonicWall SSL VPNs, hitting patched devices. Organizations face risks from possible zero-day flaw.
SecurityWeek1d
SonicWall Says Recent Attacks Don’t Involve Zero-Day Vulnerability
SonicWall investigating reports about a zero-day being exploited in ransomware attacks, but found no evidence of a new ...
JD Supra20h
Ransomware Attacks Target SonicWall Firewall Vulnerability
Ransomware group Akira is believed to be behind a large number of attacks that appear to be tied to SonicWall firewalls with SSLVPN enabled. Over ...
htxt1d
Attackers disable security solutions to install ransomware
GuidePoint Security has discovered attackers exploiting legitimate drivers to gain access to a device. This is accomplished ...
The Hacker News4d
SonicWall Investigating Potential SSL VPN Zero-Day After 20+ Targeted Attacks Reported
Huntress said it detected around 20 different attacks tied to the latest attack wave starting on July 25, 2025, with ...
SonicWall investigates 'cyber incidents,' including ransomware targeting suspected 0-day
SonicWall on Monday confirmed that it's investigating a rash of ransomware activity targeting its firewall devices, following ...