好的,我现在需要帮用户总结一篇文章的内容,控制在100个字以内。首先,我得仔细阅读文章内容,抓住关键点。 文章讲的是Marquis Software Solutions起诉SonicWall,指控他们玩忽职守和误导,导致了针对74家美国银行的勒索软件攻击。攻击发生在2025年8月14日,黑客通过入侵SonicWall防火墙进入Marquis的网络。他们窃取了包含个人信息的文件,包括姓名、地址、电话号码、社会安全号码、纳税人识别号和财务账户信息。 Marquis为超过700家银行、信用合作社和抵押贷款机构提供服务。在2026年1月,Marquis正式指控SonicWall安全失败,因为攻击者并没有利用防火墙未修补的漏洞,而是利用了从SonicWall云备份基础设施中提取的配置数据。问题出在SonicWall在2025年2月对其MySonicWall云备份服务的一个API代码更改引入的安全漏洞。这个漏洞允许未经授权访问存储在SonicWall云中的防火墙配置备份文件,其中包含AES-256加密的凭证、配置数据和MFA一次性密码。 SonicWall在事件发生后三周才披露,并最初估计影响其5%的客户,但后来确认所有客户都受到影响。调查发现攻击是由国家支持的黑客实施的。尽管Marquis当时启用了防火墙、多因素认证和其他安全措施,但攻击者利用了SonicWall云备份漏洞中的信息绕过了MFA。 当Marquis直接联系SonicWall关于MFA绕过的问题时,后者据称扣留了关键信息并忽略了请求。Marquis声称因此遭受了重大损失,包括客户流失、企业价值下降,并面临超过36起消费者集体诉讼。现在他们寻求赔偿、补偿以及律师费等。 总结时需要涵盖起诉原因、攻击影响、漏洞来源、后果以及诉讼请求。要简洁明了,在100字以内。 </think> Marquis起诉SonicWall因后者安全漏洞导致勒索软件攻击影响74家美国银行。黑客利用SonicWall云备份服务中的API漏洞获取配置数据,在2025年8月入侵Marquis网络并窃取大量个人信息。尽管Marquis采取多重安全措施,仍遭攻击。事件后引发多起诉讼及企业损失。 2026-2-25 16:0:22 Author: www.bleepingcomputer.com(查看原文) 阅读量:8 收藏
Marquis Software Solutions has filed a lawsuit against SonicWall, accusing the cybersecurity company of gross negligence and misrepresentation that allegedly led to a ransomware attack disrupting operations at 74 U.S. banks.
On August 14, 2025, hackers breached Marqui's network in a ransomware attack after compromising a SonicWall firewall. The attacker stole files containing personal information received from business partners.
The details included names, addresses, phone numbers, Social Security numbers, Taxpayer Identification Numbers, and financial account information.
Marquis provides data analytics, CRM tools, compliance reporting, and digital marketing services, with a clientele that includes more than 700 banks, credit unions, and mortgage lenders.
In January 2026, Marquis officially accused SonicWall of security failures after determining that the hackers had not exploited an unpatched flaw in its firewall, as previously assumed. Instead, it was discovered that the attacker leveraged configuration data extracted from the vendor’s cloud backup infrastructure.
The cause of the breach was a security gap that SonicWall introduced in its MySonicWall cloud backup service via an API code change in February 2025.
The vulnerability allowed unauthorized access to firewall configuration backup files stored in SonicWall’s cloud, which contain AES-256 encrypted credentials, configuration data, and MFA scratch codes.
The cybersecurity vendor disclosed the incident only three weeks later and initially estimated it impacted 5% of its customer base, but later confirmed that all clients were impacted.
An investigation from incident response company Mandiant revealed that the attack was carried out by state-sponsored hackers.
Marquis states that at the time of the attack, its SonicWall firewall was up to date, multi-factor authentication (MFA) was enabled, and additional security controls were in place, but the threat actor compromised it using information exposed in the SonicWall cloud backup breach.
When contacted directly by Marquis about the MFA bypass, SonicWall allegedly withheld critical information and ignored the request.
"As a result of SonicWall’s conduct, Marquis has suffered, and continues to suffer, damages; a loss of customers; harm to its business reputation; lost business opportunities, revenue and profit; and substantial diminution in its enterprise value," Marquis notes in the complaint.
Marquis notes that it is now defending more than 36 consumer class action lawsuits stemming from the ransomware attack it suffered.
For this, Marquis now seeks monetary damages, indemnification, contribution for any judgments in the related class actions, attorneys’ fees, and equitable relief.
The future of IT infrastructure is here
Modern IT infrastructure moves faster than manual workflows can handle.
In this new Tines guide, learn how your team can reduce hidden manual delays, improve reliability through automated response, and build and scale intelligent workflows on top of tools you already use.
如有侵权请联系:admin#unsafe.sh