WPA2 KRACK Exploit: A SonicWall Alert
Exert from here: https://www.sonicwall.com/en-us/support/product-no...
On October 16, 2017 security researchers made public earlier findings in which they demonstrated fundamental design flaws in WPA2 that could theoretically lead to man-in-the-middle (MITM) attacks using key reinstallation attacks (KRACKs). Exploiting the vulnerability could enable cyber criminals to steal confidential information such as email, credit card numbers, passwords and more.
The WPA2 design flaws
are protocol vulnerabilities and are not implementation specific. Both
wireless access points and wireless clients are susceptible. Details of
the vulnerabilities are available on the researchers’ website at
Impact to SonicWall customers
SonicWall Capture Labs has evaluated these vulnerabilities and determined that our SonicPoint and SonicWave wireless access points, as well as our TZ and SOHO Wireless firewalls, are not vulnerable to the flaws in WPA2.
SonicWall is working on a solution to provide an additional layer of protection for SonicWall customers that will block these man-in-the-middle attacks even from vulnerable unpatched clients. This will be delivered in a future SonicOS update.
In order to minimize the potential impact of these vulnerabilities, SonicWall recommends customers take the following actions:
- Patch all Windows, Linux, Android, iOS and Mac OS clients with the latest KRACK updates from client vendors.
additional security, customers can use SonicWall VPN technology to
encrypt all network traffic between their wireless clients and the
- For SSL encryption on mobile devices, use the SonicWall Mobile Connect client, available from the Apple App Store, Google Play, the Windows Phone Store or the Chrome Web Store https://cdn.sonicwall.com/sonicwall.com/media/pdfs/products/product-vpn-clients-mobile-connect.pdf.
- For IPSec encryption, use the SonicWall Global VPN Client https://www.sonicwall.com/en-us/support/knowledge-base/170505725970885.
SonicWall NSA 2650 now in stock
The first batch of NSA 2650's have arrived and in stock...
Five key announcements from SonicWall
- New SonicOS 6.5 includes more than 50 new features and is the biggest customer-driven SonicOS release in company history
- New NSA 2650 firewall enables threat prevention over 2.5 gigabit Ethernet wired and 802.11ac Wave 2 wireless networks, supports twice the number of DPI connections and offers 12,000 DPI SSL connections, an increase of 12X
- New SonicWave 802.11ac Wave 2 wireless access points for high-performance speed, security and reliability
- New SonicWall Cloud Analytics to make better, faster and smarter security decisions
- New Secure Mobile Access OS 12.1 ensures remote workers are protected with the same level of security from any location
GDPR - General Data Protection Regulation
Explanation of the diffrerence between CGSS and AGSS
We've created a page to explain the differences between the Advanced Gateway Security Suite (AGSS) and the Comprehensive Gateway Security Suite (CGSS), and also what you can expect from the different hardware/software bundles.
SonicWall Best Practices to protect against Ransomware
Another best practices guide, this time specifically for any Ransomware: https://support.sonicwall.com/kb/229932
SSL VPN NetExtender issues in some Windows 10 clients
We've had some reports of customers having issues with the NetExtender client on some versions of Windows 10. A new version of SonicWall Mobile Access Client (client been renamed) has been made available from Microsoft via their App Store for those running Windows 10 v10240.0 and higher:
This new version adds updated support to the built-in VPN connectivity within Microsoft Windows.
SonicWall Protects Customers from the Latest Massive WannaCry Ransomware Attack
If you are a SonicWall customer, and you are using our Gateway Security Services, your SonicWall firewall has been protecting your network from WannaCry (also known as WanaCrypt0r or WannaCrypt) ransomware since April 20, 2017.
Read more here.
Important Guidelines for Maintaining Network Security
If you are uncertain as to the level of security provided by your current solution, you can click this link for basic guidelines on Minimum Network Security requirements.
New SonicWall Firewall Best Practices Guide
Download a copy here: http://cdn.sonicwall-sales.com/SonicWall/Documentation/Firewall%20Best%20Practices.pdf
New KBs and Videos for DPI-SSL
SonicWall have produced a lot of resources to help with the deployment of DPI-SSL.
Please follow this link to see them all:
SonicWall-Sales.com awarded Gold status
We are proud to announce that due to ongoing commitments and recognition from SonicWall, SonicWall-Sales.com have been awarded Gold status in the new channel program.