Cybersecurity Vendor SonicWall Has Been Breached

SonicWall, a cybersecurity vendor serving managed service providers (MSPs) announced on January 22 that they were hacked.

The breach involved “highly sophisticated threat actors exploiting probable zero-day vulnerabilities on certain SonicWall secure remote access products,” according to the company’s statement.

If you’re a SonicWall partner, they’ve outlined some actions you can take to mitigate your risk if you have a product that has been compromised. However, it’s important that MSPs remember the foundations of a secure platform to protect their assets and their clients’.

1. Ensure applications are patched and up to date. When applications are not up to date, businesses are more vulnerable. Patch software on a regular basis, or even automatically, to avoid hackers exploiting known vulnerabilities.
2. Enable two-factor authentication. This multi-layered security approach is a vital step for MSPs looking for an easy way to better restrict access to their network, applications, and systems.
3. Review your remote monitoring policies. Ensure your alerts are set up to keep you in the know of any potential breaches or impacted endpoints.
4. Ensure you have a business continuity solution in place. Business continuity and disaster recovery (BCDR) tools are built to restore a device or server in the event of a security breach or disaster. When all else fails, BCDR tools enable businesses to get back up and running when the worst happens, keeping business operations intact.

Source: Datto