BeyondMachines :verified:<p>SonicWall MySonicWall platform breached, firewall config files exposed</p><p>SonicWall disclosed a data breach of its MySonicWall cloud platform caused by coordinated brute-force attacks that exposed sensitive firewall configuration files containing network topology, VPN credentials, API keys, and security rules from multiple organizations.</p><p>**If you're using SonicWall firewalls with MySonicWall cloud backup, log into your MySonicWall account to check if your devices are flagged as affected. If yes, reset all passwords, API keys, and shared secrets in your firewall configurations. You'll also need to update credentials with all external services that use the compromised data, like your ISP, Dynamic DNS providers, email providers, VPN peers, and LDAP/RADIUS servers.**<br><a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cybersecurity</span></a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>infosec</span></a> <a href="https://infosec.exchange/tags/incident" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>incident</span></a> <a href="https://infosec.exchange/tags/ransomware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ransomware</span></a><br><a href="https://beyondmachines.net/event_details/sonicwall-mysonicwall-platform-breached-firewall-config-files-exposed-w-p-x-o-r/gD2P6Ple2L" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">beyondmachines.net/event_detai</span><span class="invisible">ls/sonicwall-mysonicwall-platform-breached-firewall-config-files-exposed-w-p-x-o-r/gD2P6Ple2L</span></a></p>