Dark Reading

Threat Actor Deploys 'OVERSTEP' Backdoor in Ongoing SonicWall SMA Attacks

SonicWall has released a firmware update to aid its customers in removing a rootkit malware, a type of malware designed to allow threat actors admin-level access while remaining undetected. The ...
TechRepublic

Google Reveals How a Hacker Exploits SonicWall Hardware Using OVERSTEP Backdoor

A hacker has been using a backdoor to exploit certain SonicWall SMA appliances since October 2024. Google’s Threat Intelligence Group provides tips on mitigating this security threat. A financially ...
Dark Reading

Fully Patched SonicWall Gear Under Likely Zero-Day Attack

A threat actor linked to the Abyss ransomware campaign appears to be exploiting a zero-day flaw to plant a stealthy new backdoor on fully patched end-of-life SonicWall Secure Mobile Access (SMA) 100 ...
Bleeping Computer

SonicWall SMA devices hacked with OVERSTEP rootkit tied to ransomware

A threat actor has been deploying a previously unseen malware called OVERSTEP that modifies the boot process of fully-patched but no longer supported SonicWall Secure Mobile Access appliances. The ...