cve-2024-40766

Akira Ransomware Bypasses MFA to Breach SonicWall VPNs

October 3, 2025

Akira ransomware is bypassing multi-factor authentication on SonicWall SSL VPN devices, likely using stolen OTP seeds to generate valid tokens…

Business

Akira Ransomware: 4 Hours from VPN Login to Total Encryption

September 30, 2025

Akira ransomware attacks can achieve full network encryption in as little as four hours after initial VPN access, leaving organizations…

Business

SonicWall VPN Attacks Intensify, MFA Bypassed

September 30, 2025

A ransomware group named Akira is exploiting SonicWall SSL VPN appliances, primarily through a known vulnerability (CVE-2024-40766), to bypass multi-factor…

Business

Ransomware Hackers Exploit Misconfigured EDR to Disable Security

September 19, 2025

Close-up of a man's eye viewed through a magnifying glass, emphasizing texture and detail.

Modern ransomware groups exploit minor security oversights, such as human error and misconfigurations, to bypass multi-factor authentication and disable critical…

Business

Akira Ransomware Actively Exploits Critical SonicWall VPN Flaw

September 12, 2025

The Akira ransomware group is exploiting CVE-2024-40766, a known vulnerability in SonicWall VPN appliances, to breach unpatched corporate networks. Despite…

Business

Akira Ransomware Exploits SonicWall Firewalls to Breach Organizations

September 12, 2025

SonicWall firewalls are still being exploited by Akira ransomware affiliates due to unpatched vulnerabilities and misconfigurations, including CVE-2024-40766 and SSLVPN…