CVE-2024-40766 is a vulnerability tracked across 10 threat clusters and 14 intelligence report mentions on ThreatCluster. First observed November 6, 2025; most recent activity June 23, 2026.
The Akira ransomware group has been identified as a significant threat to critical infrastructure, with the U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the FBI warning of its active ransomware…
In June 2026, a surge in attacks targeting SonicWall Gen 7 firewalls has been reported, exploiting CVE-2024-40766, an improper access control flaw. This vulnerability allows threat actors to gain unauthorized access,…
CVE-2024-40766 is an improper access control vulnerability in SonicWall SonicOS affecting Gen 5, Gen 6, and Gen 7 firewalls. The vulnerability, with a CVSS score of 9.3, allows unauthorized access and can crash the…
Marquis Software Solutions experienced a ransomware attack on August 14, 2025, leading to the exposure of sensitive customer information, including Social Security Numbers and names. The company serves numerous banks…
A critical vulnerability (CVE-2025-9242) in WatchGuard Firebox OS allows remote unauthenticated attackers to execute arbitrary code. Affected versions include Fireware OS 11.x, 12.x, and 2025.1. The U.S. Cybersecurity &…
A critical vulnerability (CVE-2025-9242) in WatchGuard's Fireware OS has been identified, allowing remote unauthenticated attackers to execute arbitrary code on over 54,000 Firebox devices globally. The U.S.…
SonicWall reported that a state-sponsored threat actor conducted a brute-force attack on its MySonicWall cloud backup service, compromising firewall configuration files of all affected customers. An investigation by…
SonicWall reported unauthorized access to backup firewall configuration files in September 2025, attributed to a state-backed threat actor. The company engaged Mandiant for an investigation and communicated with…
SonicWall has alerted customers to a local privilege escalation vulnerability (CVE-2025-40602) in the SMA1000 Appliance Management Console, which has been exploited in the wild in conjunction with another vulnerability…
ReliaQuest has reported an increase in malware campaigns utilizing manufactured trust and user interaction, with a notable rise in incidents involving the BaoLoader malware. The company identified spearphishing links,…