SonicWall Security Breach: Cloud Backup Blunder Puts Firewalls at Risk!
SonicWall’s cloud backup service for firewalls has been compromised, affecting around 5% of its install base. While encrypted, the files contain details like firewall serial numbers that could lead to future exploits. Impacted customers are urged to take immediate action to secure their systems before cybercriminals can say, “Firewall? More like Fire-why-not?”
Hot Take:
When it rains, it pours for SonicWall! They might want to consider renaming their firewall service to “Swiss Cheese” given all the holes that have been poked into it lately. It seems like the only thing more exposed than their firewalls right now is a streaker at a football game! But hey, at least they’re not dealing with a ransomware attack… just a good old-fashioned brute force assault. Classic hackers, always keeping it vintage!
Key Points:
- SonicWall’s cloud backup service for firewalls was breached, affecting around 5% of its firewall install base.
- Credentials in the firewall preference files are encrypted, but other exploitable information, like serial numbers, was accessed.
- Impacted customers need to disable WAN services and follow remediation steps, including updating passwords and keys.
- Affected users will receive a new preferences file to import, which randomizes passwords and resets time-based passwords.
- This incident follows recent attacks on SonicWall, including active exploits of critical vulnerabilities.