News

Akira ransomware abuses CPU tuning tool to disable Microsoft Defender
Akira ransomware is abusing a legitimate Intel CPU tuning driver to turn off Microsoft Defender in attacks from security ...
SonicWall finds no SSLVPN zero-day, links ransomware attacks to 2024 flaw
SonicWall says that recent Akira ransomware attacks exploiting Gen 7 firewalls with SSLVPN enabled are exploiting an older ...
This devious ransomware is able to hijack your system to turn off Microsoft Defender
“The first driver, rwdrv.sys, is a legitimate driver for ThrottleStop. This Windows-based performance tuning and monitoring ...
it-daily.net6d
Akira ransomware targets SonicWall VPNs
Cybersecurity experts are sounding the alarm. The Akira ransomware is apparently once again exploiting vulnerabilities in ...
The Hacker News5d
SonicWall Investigating Potential SSL VPN Zero-Day After 20+ Targeted Attacks Reported
Huntress said it detected around 20 different attacks tied to the latest attack wave starting on July 25, 2025, with ...
Hackers found a way around Microsoft Defender to install ransomware on PCs, report says
The good driver that's being exploited here is called "rwdrv.sys,' which is used for tuning software for Intel CPUs. Hackers ...
Hackers can bypass Microsoft Defender to install ransomware on PCs
This is done by exploiting a vulnerable driver called rwdrv.sys, which is a legitimate driver used by an Intel CPU tuning ...
CSO Online4d
Akira affiliates abuse legitimate Windows drivers to evade detection in SonicWall attacks
Threat researchers at GuidePoint Security have uncovered Akira affiliates abusing legitimate Windows drivers in a previously ...
SonicWall VPNs are being targeted by a new zero-day in ransomware attacks
As of mid-July this year, cybersecurity researchers Arctic Wolf Labs observed an uptick in malicious logins, all coming ...
SonicWall investigates 'cyber incidents,' including ransomware targeting suspected 0-day
SonicWall on Monday confirmed that it's investigating a rash of ransomware activity targeting its firewall devices, following ...
Infosecurity Magazine6d
Uptick in Akira Ransomware Actors Targeting SonicWall VPNs
In all of the cases observed by the security vendor, threat actors achieved VPN access through SonicWall SSL VPNs. There then ...
SonicWall urges customers to disable SSLVPN amid reports of ransomware attacks
Security researchers say they have evidence that ransomware gangs are hacking into large companies that rely on fully patched ...