SonicWall has blamed “state-sponsored threat actors” for the cloud backup security breach which hit its services in September 2025.
In an update posted on the company’s website, SonicWall said it completed the investigation into the incident, and confirmed that the malicious activity was “carried out by a state-sponsored threat actor” and was “isolated to the unauthorized access of cloud backup files from a specific cloud environment using an API call.”
Read more…
Source: TechRadar News
Sign up for the Cyber Security Review Newsletter
The latest cyber security news and insights delivered right to your inbox
Related:
- North Korean hackers blamed for $290M crypto theft
April 20, 2026
Over the weekend, hackers stole more than $290 million in cryptocurrency from Kelp DAO, a protocol that allows users to earn yields on idle crypto investments. By Monday, LayerZero, one of the projects affected by the hack, accused North Korea of carrying out the heist. The hack is now the largest crypto theft of the year ...
- Personal data held by NHS Shetland is breached more than 160 times in three years
April 17, 2026
Personal and sensitive data held by NHS Shetland was breached more than 160 times over the last three years, it can be revealed. Information given to The Shetland Times through a Freedom of Information (FoI) request showed there was 161 occassions where confidential data was leaked. Data was shown to be lost, stolen or left insecure ...
- Patient medical data stolen in Chipsoft ransomware attack
April 17, 2026
Medical software company Chipsoft has confirmed that patient data was stolen in a ransomware attack last week, after initially telling clients that personal data was “probably” safe. The attack hit family doctors, rehabilitation clinics and the Rotterdam Eye Hospital, which all use Chipsoft’s cloud-hosted HiX 365 platform. Other hospitals that use the company’s technology on their ...
- Dissecting Sapphire Sleet’s macOS intrusion from lure to compromise
April 16, 2026
Microsoft Threat Intelligence uncovered a macOS‑focused cyber campaign by the North Korean threat actor Sapphire Sleet that relies on social engineering rather than software vulnerabilities. By impersonating a legitimate software update, threat actors tricked users into manually running malicious files, allowing them to steal passwords, cryptocurrency assets, and personal data while avoiding built‑in macOS security checks. ...
- “iCloud storage is full” scam is back, and now it wants your payment details
April 16, 2026
A few months ago, we reported on a fake cloud storage alert that triggered a redirect chain to an app that has since been delisted from the Apple Store. The threat of losing your photos is a powerful lure, so scammers are now using it to steal personal and financial details. The Guardian warns about an ...
- Sweden blames Russian hackers for attempting ‘destructive’ cyberattack on thermal plant
April 15, 2026
The Swedish government said Russian government-linked hackers attempted to disrupt the operations at one of the country’s thermal power plants last year. Sweden said that, while the hackers were unsuccessful, hybrid attacks that extend beyond cyberspace are becoming more dangerous. Sweden’s minister of civil defense, Carl-Oskar Bohlin, said during a press conference on Wednesday that the ...