Sophos rushed patches to users of its popular XG Firewall network system following reports the company received last week that hackers were actively exploiting an SQL injection vulnerability.
The assault involved the downloading and installation of a series of scripts designed to steal user names, passwords and other sensitive data.
“At this time, there is no indication that the attack accessed anything on the local networks behind any impacted XG Firewall,” Team Sophos said. But they did not rule out the possibility of compromised data.
Comments are closed.