The campaign has prompted urgent warnings from incident response firm Atmos, digital forensics company CyberCX, and Lockton Australia’s Cyber Practice, who have observed multiple ransomware events in recent weeks. The attacks specifically target SonicWall Gen 7 firewalls through CVE-2024-40766, a vulnerability that SonicWall says it has “high confidence” correlates with the current activity.
