Recently, our cybersecurity system detected an IP owned by Censys trying to connect to our SMA on port 443. Censys has lots of posts about SonicWall vulnerabilities recently.
I'm wondering if Sonicwall has engaged with Censys for some sort of penetration testing? Or if Censys is just doing blanket pen tests on public IP addresses to find vulnerable Sonicwall products?
Best answer by MattK_Censys
Hey there, you may have observed a scan attempt from our internet mapping services. Our scans do not ever try to log in to any service, read any database, or otherwise gain authenticated access to any system.
The data Censys gathers is sometimes used to detect security problems and to inform operators of vulnerable systems so that the systems can be fixed.
If you would like to opt out of scanning, please follow the instructions provided here.
+2Hey there, you may have observed a scan attempt from our internet mapping services. Our scans do not ever try to log in to any service, read any database, or otherwise gain authenticated access to any system.
The data Censys gathers is sometimes used to detect security problems and to inform operators of vulnerable systems so that the systems can be fixed.
If you would like to opt out of scanning, please follow the instructions provided here.
Thank you for the reply. The IP was from one of the subnets in the KB article you linked. We will drop the traffic! Thanks again.
Already have an account? Login
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.
