Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

SonicWall MySonicWall credential reset advisory

Advisory/Mitigation
First reported
Last updated
Happening score
H score 24
1 unique sources, 1 articles

Summary

Hide ▲

SonicWall issued an urgent mitigation for exposed MySonicWall backup-file secrets, telling customers to reset credentials and shared secrets to reduce the risk of follow-on abuse. The guidance covered account access, temporary codes, directory and VPN credentials, and IPSec and GroupVPN shared secrets.

Related Happenings

SonicWall Gen6 SSL-VPN MFA-bypass flaw (CVE-2024-12802)

Vulnerability
First: 21.05.2026 00:19 Last: 21.05.2026 00:19 Sources 1

About this happening: Researchers confirmed **first-in-the-wild exploitation** of **CVE-2024-12802** against **SonicWall Gen6 SSL-VPN appliances**, showing that incomplete remediation can leave **MFA b...

Open Happening

Five-step containment playbook for Iranian wiper campaigns

Defensive Guidance
First: 20.03.2026 16:01 Last: 20.03.2026 16:01 Sources 1

About this happening: Organizations facing **Iranian wiper campaigns** are being urged to adopt a five-step containment playbook that cuts **blast radius** and limits destructive spread after initial a...

Open Happening

SonicWall MySonicWall cloud backup breach exposing firewall backup files

Data Leak
First: 29.01.2026 19:57 Last: 29.01.2026 19:57 Sources 1

How related: SonicWall's investigation into the September security breach that exposed customers' firewall configuration backup files concludes that state-sponsored hackers were behind the attack.

About this happening: **SonicWall** said a **state-sponsored threat actor** stole **firewall configuration backup files** from its **MySonicWall cloud backup service** in a **September** security breac...

Open Happening

Marquis Software Solutions hit by ransomware attack

Incident
First: 29.01.2026 19:57 Last: 29.01.2026 19:57 Sources 1

About this happening: **Marquis Software Solutions** disclosed that its **August 14, 2025** ransomware attack exposed personal data tied to **74 U.S. banks and credit unions** and affected **over 400,0...

Latest development: 18.03.2026 17:32

Marquis, a Texas-based financial services provider, disclosed that a ransomware gang stole personal and financial data from 672,075 people after an August 14, 2025 attack on a compromised SonicWall firewall, and the incident disrupted operations at 74 banks across the United States; breach notifications were filed in early December, and affected files were reviewed on December 10, 2025.

Open Happening

SonicWall security patch release for CVE-2025-40602

Security Patch Release
First: 17.12.2025 20:17 Last: 17.12.2025 20:17 Sources 1

About this happening: SonicWall released **fixes** for **SMA 100 series appliances** after **CVE-2025-40602** was reported **actively exploited in the wild**, closing a path to local privilege escalati...

Open Happening

Timeline

  1. 05.11.2025 19:13 2 articles · 6mo ago

    SonicWall MySonicWall credential reset advisory

    Initial Disclosure

    Immediately after the September disclosure, **SonicWall** told customers to reset exposed **MySonicWall** credentials and related VPN and directory secrets. The first mitigation phase centered on reducing abuse of secrets contained in firewall backup files.

    Show sources
    Open in new tab