Threat Post

Hackers Mount Zero-Day Attacks on Sophos Firewalls

A pre-auth SQL injection bug leading to remote code execution is at the heart of a data-stealing campaign against XG firewalls, using the Asnarok trojan. Attackers have been targeting the Sophos XG ...
ZDNet

Hackers are exploiting a Sophos firewall zero-day

Cyber-security firm Sophos has published an emergency security update on Saturday to patch a zero-day vulnerability in its XG enterprise firewall product that was being abused in the wild by hackers.
CRN

Sophos Launches New XG Firewall Version, Adds New Application Visibility And Deployment Options

Sophos continues to add to its firewall capabilities, announcing on Tuesday the launch of the latest version of its Sophos XG Firewall. The Sophos XG Firewall Version 17 looks to fill the gaps in ...
Bleeping Computer

Hackers exploit zero-day in Sophos XG Firewall, fix released

Sophos has fixed a zero-day SQL injection vulnerability in their XG Firewall after receiving reports that hackers actively exploited it in attacks. Sophos states that they received a report on April ...
CRN

Sophos XG Firewall Exploited By Zero-Day Bug, Patch Released

The attack was apparently intended to steal sensitive information from the firewall, though Sophos said it has not discovered any evidence that data had been successfully exfiltrated. A previously ...
TWCN Tech News

Free Hardware-type Firewall

Some operating systems have a firewall built into the kernel. There are hardware-based firmware firewalls in your modems and routers. And then there are several third-party hardware and software ...