SonicWall firewall configs stolen and more - Oct 12, 2025

Weekly Roundup

Oct 12

Written By RF Wave

Featured

SonicWall now says firewall configs stolen for all cloud backup customers

SonicWall is recommending administrators to:
- Reset/update passwords of all local users
- Reset TOTP codes for local users
- Update passwords on LDAP, RADIUS or TACACS+ servers
- Update shared secret or password used in VPN
- Reset CLoud Secure Edge (CSE) API key

This Week’s Updates

Breaches

Discord has revealed they were victim of a data breach

Avnet has revealed they were victim of a data breach

Vulnerabilities

Oracle has released emergency software updates for E-Business Suite to address a critical vulnerability that's being actively exploited

Redis has released software updates to address a severe vulnerability

Security researchers have revealed a vulnerability in the Framelink Figma MCP server

Security researchers reveal active exploitation against Service Finder WordPress theme

vulnerabilitydata breachSonicWallService FinderWordPressFramelink Figma MCP ServerAvnetRedisOracleDiscord

RF Wave

WestJet was breached and more - Oct 5, 2025