DeepNewz, mobile.

People-sourced. AI-powered. Unbiased News.

Screenshot of DeepNewz app showing story detail view.

Screenshot of DeepNewz app showing story list view.

Search

For You

Sources

Loading...

Additional media

Loading...

Similar Stories

Footer

AI

AI Fundraising
AI Modeling
AI Products

Business

Automobile
Company Earnings
Economics
Law
Prediction Markets
Real Estate
Rumors
Stocks
VC

Crypto

Airdrops
Blockchains
CBDCs
DeFi
Hacks
Markets
Memecoin
Mining
NFT
Regulation

Culture

Anime
Celebrities
Crime
Education
Movies
Music
Obituary
TV
Video Games

Environment

Climate
Energy
Natural Disasters
Natural Resources
Sustainability

Politics

DOGE
Epstein Files
Executive Orders
Tariffs
US Domestic Policy
US Elections
US Foreign Policy
US Gov Appointments
US Judiciary
US Legislation
War

Science

Archeology
Bio
Health
Math
Pharma
Physics
Space

Sports

Boxing
Chess
Cricket
Golf
Hockey
MLB
NBA
NCAA
NFL
Olympics
PGA
Poker
Racing
Rugby
Soccer
Tennis
UFC

Tech

AR-VR
Fintech
Infosec
IoT
Metaverse
Policy
Robotics
Smart Home
Software
Startups
Wearables

United States

Arizona
Boston
California
Chicago
Colorado
Detroit
Florida
Georgia
Las Vegas
Los Angeles
New Jersey
New Mexico
New York
Ohio
Oregon
Philadelphia
San Francisco
Seattle
Texas
Utah
Washington DC

World

Terms of Service

WhatsApp YouTube X

© 2025 DeepNFTValue, Inc. All rights reserved.

Jul 16, 02:25 PM

UNC6148 Exploits Fully Patched SonicWall SMA 100 Firewalls with Persistent OVERSTEP Rootkit, Google Links Attack to Ransomware

Authors

5

Cybersecurity researchers have identified a sophisticated attack targeting fully patched SonicWall SMA 100 series firewalls. The attack involves the deployment of a stealthy backdoor and rootkit named OVERSTEP, which is capable of rewriting boot scripts, hiding logs, and stealing credentials. This malware persists even after device reboots, allowing attackers to maintain long-term access. The threat actor UNC6148 is linked to these intrusions, which have been associated with ransomware activities. Google has publicly disclosed the discovery of this custom backdoor, highlighting the severity of the compromise on SonicWall network devices despite recent patches.

#SonicWall SMA #Google #SonicWall

Written with ChatGPT (GPT-4).

Ars Technica@arstechnica
17 days ago
Google finds custom backdoor being installed on SonicWall network devices https://t.co/rr63PwoH49
Infosec Alevski 💻🕵️‍♂️@Alevskey
17 days ago
Fully Patched SonicWall Gear Under Likely Zero-Day Attack: https://t.co/sz6d9CARTt by darkreading #infosec #cybersecurity #technology #news
Nicolas Krassas@Dinosn
17 days ago
SonicWall SMA devices hacked with OVERSTEP rootkit tied to ransomware https://t.co/nfQ1QfFVGe

Similar Stories

Google Reports SonicWall SMA 100 Attacks, Sues China-Based BadBox 2.0 Botnet Over Android IoT Malware; Cisco Patches CVE-2025-20337

Authors

9

16 days ago

Scattered Spider Uses Social Engineering to Target VMware ESXi; Fire Ant Espionage and Akira Ransomware Hit SonicWall VPNs

Authors

5

3 days ago

Batavia Spyware, RondoDox Botnet, and Atomic MacOS Stealer Target Russian Firms, 6,000+ Ethereum Developers Since July 2024

Authors

4

25 days ago

Microsoft Server Software Attacked; Over 400 Organizations Including U.S. Nuclear Agency Breached by China-Linked Hackers Using Ransomware; Russian Group Targets Moscow Embassies

Authors

32

9 days ago

CISA Releases Thorium Tool as Storm-2603 Deploys Warlock, LockBit Ransomware and 3,000 Microsoft 365 Accounts Breached

Authors

3

1 day ago

Google Patches CVE-2025-6554 Chrome Zero-Day Added to U.S. CISA KEV Catalog; Batavia Spyware Targets Russian Orgs

Authors

7

26 days ago

CISA Confirms Active Attacks on SysAid CVSS 9.3 Flaws Hijacking Admin Accounts; Patches Due August 12

Authors

4

10 days ago

CISA Adds Citrix NetScaler 'Citrix Bleed 2' to Exploited Vulnerabilities Catalog as Fortinet FortiWeb, Wing FTP Server, and PerfektBlue Flaws Under Active Attack

Authors

3

22 days ago

Critical NVIDIA Container Toolkit Flaw CVE-2025-23266 with CVSS 9.0 Affects 37% of Cloud; Broadcom Patches VMware Flaws

Authors

3

15 days ago