🚨Akira Ransomware targets SonicWall VPNs in likely zero-day attacks Over the past 72 hours, there has been a notable increase in both internally and externally reported cyber incidents involving Gen 7 SonicWall firewalls where SSLVPN is enabled. This includes threat activity highlighted by third-party cybersecurity research teams such as: - Arctic Wolf - Google Mandiant - Huntress The below KQL uses MDE device discovery telemetry to determine if there is a SonicWall firewall in your environment and if SSLVPN functionality has been running on the client endpoint.🫡 #Cybersecurity #SonicWall #ZeroDay #AkiraRansomware