SonicWall Admits Hackers Stole All Customer Firewall Configs from Cloud Service

SonicWall cloud backup breach exposes all users' firewall data, highlighting security flaws and sparking criticism over weak API protections.

By Content Team

Oct 9, 2025

ON THIS PAGE

Share

---

ON THIS PAGE

Want more insights like this?

Subscribe to our newsletter to get the latest software protection strategies delivered to your inbox.

By submitting your email, you consent to Codekeeper contacting you and agree to our privacy policy.

SonicWall confirmed Wednesday that attackers successfully breached its cloud backup service through a brute-force attack, accessing firewall configuration files from every customer who used the platform. The company initially downplayed the breach's scope, claiming less than 5% of customers were affected, but later admitted all cloud backup users were compromised.

The stolen data includes firewall rules, encrypted passwords, and network configurations—essentially a roadmap for future attacks. Security experts criticized SonicWall for lacking basic protections like rate limiting on public APIs.

This marks another blow for SonicWall customers, who've faced years of actively exploited vulnerabilities, including recent Akira ransomware campaigns. The company has notified affected customers and released detection tools.

Source: CyberScoop

Share this article

Have questions about protecting your software?

Our escrow experts are standing by to help.

Book a free demo

YOU MAY ALSO LIKE

UK Security Agency Warns of Severe Cyber Threats to Critical Infrastructure

Feb 11, 2026

Substack Confirms Data Breach Affecting 700,000 Users After Hacker Leaks Information

Feb 6, 2026

Cisco Patches Critical Zero-Day Exploited by Chinese Hackers

Jan 17, 2026

Fake Claude AI Sites Spread Malware Through Google Ads

Mar 11, 2026