SonicWall firewall configs stolen and more - Oct 12, 2025

Weekly Roundup

Oct 12

Written By RF Wave

Featured

SonicWall now says firewall configs stolen for all cloud backup customers

SonicWall is recommending administrators to:
- Reset/update passwords of all local users
- Reset TOTP codes for local users
- Update passwords on LDAP, RADIUS or TACACS+ servers
- Update shared secret or password used in VPN
- Reset CLoud Secure Edge (CSE) API key

This Week’s Updates

Breaches

Discord has revealed they were victim of a data breach

Avnet has revealed they were victim of a data breach

Vulnerabilities

Oracle has released emergency software updates for E-Business Suite to address a critical vulnerability that's being actively exploited

Redis has released software updates to address a severe vulnerability

Security researchers have revealed a vulnerability in the Framelink Figma MCP server

Security researchers reveal active exploitation against Service Finder WordPress theme

vulnerabilitydata breachSonicWallService FinderWordPressFramelink Figma MCP ServerAvnetRedisOracleDiscord

RF Wave

Microsoft Released October 2025 Software Updates

WestJet was breached and more - Oct 5, 2025