SonicWall recently revealed that its cloud backup service was compromised in early September. Hackers gained access to the backup files of less than 5% of its customers’ firewalls. The breach affected all firewalls configured to back up data to MySonicWall.
These files contain encrypted credentials and configuration data, which puts users at risk if possession is gained by attackers. SonicWall has notified affected partners and customers, released tools for assessment and remediation, and updated its security measures with Mandiant’s help.
To check the impact on your devices, log in to MySonicWall.com and look for cloud backups of registered firewalls. If present, review device serial numbers to determine risk levels. Customers are advised to reset passwords and follow SonicWall’s containment documentation to resolve the issue.
Source: https://www.securityweek.com/all-sonicwall-cloud-backup-users-had-firewall-configurations-stolen