Data leak at Sonicwall: All cloud backups of firewalls stolen
13 hours ago
- #Sonicwall
- #Data Leak
- #Cybersecurity
- Sonicwall reported a data leak where all cloud backups of firewall configurations were stolen, initially thought to affect only 5% of customers but now confirmed to impact all.
- Customers who enabled optional backup of firewall configurations in Sonicwall's cloud are affected; the company, with Mandiant's help, found the breach was more extensive than initially assessed.
- Admins are urged to log into the Sonicwall portal, scrutinize devices by importance, and follow a detailed playbook to mitigate potential attacks.
- The Akira ransomware group and other cybercriminals are believed to have the stolen backup files and are already using them in attack campaigns.