Brought to you by Fenner & Esler Insurance Agency

As you may or may not be aware, Sonic Wall VPN has a significant CYBER LOSS vulnerability.  Mitigation suggestions are pasted below.  We have several Sonic Wall A&E clients currently impacted by cyber ransomware due to threat actor exploits to the Sonic Wall.  Meaningful downtime and substantial ransom demands for decryption keys are associated with this event. Fenner & Esler advises you to stay vigilant when evaluating any communication you get regarding this issue.

MITGATION STEPS BELOW  We have detected possible exposures on your network that require immediate attention to prevent a potential security breach.  Affected System(s): Verified Vendor: SonicWall  Severity and Impact:

• Widespread targeting of SonicWall SSLVPN is resulting in a significant increase in ransomware compromise across all industry sectors and company sizes.
• Multiple ransomware groups have gained initial access to victim organizations by targeting SonicWall SSLVPN authentication pages via brute-forcing, or by exploiting software vulnerabilities that allow the attacker to bypass authentication. 

Mitigations and Required Action:

• These actions will significantly lower your risk of a successful brute-force attack:
• Consider disabling SSL VPN. If SSL VPN is absolutely necessary for business operations, you should ensure only selected IP ranges are allowed to connect. It is not sufficient to limit traffic based on geolocation only. Please ensure you have enabled “account lockout” settings for all SonicWall VPN users, and confirm MFA (Multi-Factor Authentication) is enforced at all times, for local and domain accounts.Audit and remove accounts not in use.
• Please ensure your SonicWall products are not affected by the following vulnerabilities:
• CVE-2024-40766  https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0015
• CVE-2024-53704, CVE-2024-53705 https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0003
• CVE-2025-40596, CVE-2025-40597, CVE-2025-40598 https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0012
• CVE-2025-40600 https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0013
• CVE-2023-44221 https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2023-0

Content originally published by SonicWall

Don’t let a cyber attack or error jeopardize your firm.

Cybersecurity breaches targeting architecture firms of all sizes are on the rise. According to UPS Capital, 60% of small businesses go out of business within six months of an attack. If you don’t have a cyber liability insurance policy, contact Fenner & Esler for information on their affordable policies for architects and engineers. Download Fenner & Esler’s cybersecurity checklist to proactively protect your firm.