SonicWall is advising its customers to disable the SSLVPN feature on its Generation 7 firewalls due to a surge in ransomware attacks. Security researchers indicate that hackers are exploiting SonicWall devices to infiltrate networks, potentially leveraging a zero-day vulnerability. Arctic Wolf has observed intrusions since mid-July, while Huntress Labs suspects the Akira ransomware gang is involved, targeting domain controllers after exploiting the firewall vulnerability. SonicWall is currently investigating the incidents.