SonicWall has issued a warning to reset credentials following a security breach that exposed firewall configuration backup files in MySonicWall accounts, impacting less than 5% of their firewall customer base. The incident involved brute force attacks and could allow threat actors to exploit sensitive information, but SonicWall is actively working with authorities and providing guidance to mitigate risks. #SonicWall #CVE-2024-40766
Keypoints
- SonicWallβs recent breach exposed firewall backup files stored in some MySonicWall accounts.
- Less than 5% of SonicWall firewalls were affected by the incident.
- The attack involved brute force tactics targeting customer accounts.
- SonicWall recommends resetting all credentials and disabling WAN access to compromised services.
- The vulnerability related to CVE-2024-40766 was exploited by the Akira ransomware gang.