Follow-Up: SonicWall Updates Advisories for Actively Exploited Vulnerabilities

**Executive summary:** Arctic Wolf warns of active credential-access activity targeting SonicWall SMA devices tied to CVE-2023-44221 and CVE-2024-38475, noting CISA KEV catalog additions and public PoC/exploit details that could drive increased exploitation; the bulletin urges patching to fixed firmware, enabling MFA, resetting and hardening local accounts, limiting VPN access, removing unused accounts, and enabling syslog monitoring.