It is good that Sophos has released fixes for this RCE vulnerability and we know that making sure Webadmin and the User Portal are not exposed to the Internet at large effectively mitigate the threat, but are there any IOCs that can be hunted for to determine if a customer's firewall has been compromised or attacked with the exploit(s) for this vulnerability?
This thread was automatically locked due to age.
