Security firm NCC Group believes it has identified an active exploit involving a SonicWall zero-day vulnerability that was exposed last week. The company has not revealed the exact details of the exploit, as it could lead to further attacks. "In SonicWall's opinion...we have identified and demonstrated the exploitability of a potential candidate for the described vulnerability and have forwarded details to SonicWall; we have also seen indications of indiscriminate use of an exploit in the wild - please refer to the logs", says NCC in a tweet. SonicWall has not confirmed whether the exploit discovered by NCC researchers involved any of the vulnerabilities disclosed last week. Until more information is released, NCC has advised that owners of vulnerable SonicWall devices cited in the company's recent security advisory should limit the IP addresses allowed to access the management interface to those associated with authorized personnel.