SonicWall Breach Exposes Firewall Backup Data
SonicWall confirmed a security breach on September 16, 2025, that compromised its MySonicWall cloud platform. The incident allowed threat actors to access firewall configuration backups stored in the cloud. This SonicWall breach exposes firewall backup data tied to enterprise-level customers, potentially affecting network security settings and policies.
The company acknowledged that the intrusion stemmed from vulnerabilities in the platform. Two specific flaws—CVE-2025-43300 and CVE-2024-40766—were cited in connection with the breach. Attackers reportedly used these weaknesses to infiltrate the cloud environment and extract sensitive configuration data.
As the SonicWall breach exposes firewall configuration information, security analysts warn that malicious actors could use the data to map internal networks or bypass defenses. SonicWall has not disclosed how many customers were affected but urged users to review and update their backup settings.
For further details and ongoing updates, read the full report at the link below.