January 25, 2021
Cyber Security Vendor SonicWall Has Been Breached
SonicWall, a cyber security vendor serving managed service providers (MSPs) announced on January 22 that they were hacked. The breach involved “highly sophisticated threat actors exploiting probable zero-day vulnerabilities on certain SonicWall secure remote access products,” according to the company’s statement.
If you’re a SonicWall partner, they’ve outlined some actions you can take to mitigate your risk if you have a product that has been compromised. However, it’s important that MSPs remember the foundations of a secure platform to protect their assets and their clients’.
- Ensure applications are patched and up to date. When applications are not up to date, businesses are more vulnerable. Patch software on a regular basis, or even automatically, to avoid hackers exploiting known vulnerabilities.
- Enable two-factor authentication. This multi-layered security approach is a vital step for MSPs looking for an easy way to better restrict access to their network, applications, and systems.
- Review your remote monitoring policies. Ensure your alerts are set up to keep you in the know of any potential breaches or impacted endpoints.
- Ensure you have a business continuity solution in place. Business continuity and disaster recovery (BCDR) tools are built to restore a device or server in the event of a security breach or disaster. When all else fails, BCDR tools enable businesses to get back up and running when the worst happens, keeping business operations intact.