News and Trends
SHARE
Facebook X Pinterest WhatsApp

Report: Misconfigurations Propelling 2025 Cyberattacks

SonicWall urges better processes, MFA, and config management to curb 2025’s 9.5M misconfiguration-driven cyberattacks.

Written By
thumbnail Jordan Smith
Jordan Smith
Sep 21, 2025
Channel Insider content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More

SonicWall, a partner-first cybersecurity provider, recently released a report on cyber threats that found misconfigurations are driving a surge in cyberattacks in 2025.

9.5 million attacks linked to misconfigurations and basic errors this year

According to the new brief, misconfigurations have been the cause of 9.5 million cyberattacks in the first half of 2025. Basic errors, such as default passwords, exposed admin panels, and authentication failures, are driving breaches.

“While the cybersecurity industry often focuses on zero-day exploits and advanced persistent threats, attackers are still finding success through simple missteps,” said Doug McKee, executive director of threat research at SonicWall. “The fact that misconfigurations remain one of the leading causes of breaches shows that organizations need better visibility, consistent processes, and operational support to avoid repeating the same mistakes.”

The report found that nearly 70 percent of organizations surveyed faced at least one authentication bypass attempt between January and June of this year. Incidents were frequently linked to long-standing vulnerabilities, which attackers will continue to exploit years after initial discovery.

Consulting firms accounted for 46 percent of all misconfiguration-related detections, a disproportionate amount, according to SonicWall.

Directory access, data exposure, and authentication failures result in 88 percent of misconfigurations

The report also states that approximately 88 percent of misconfigurations were in three categories: directory access misconfigurations (45 percent), accidental data exposure (24 percent), and authentication failures (19 percent). 

“Misconfigurations are not obscure technical flaws; they are operational challenges that persist because they are difficult to manage at scale,” said McKee. “SonicWall is committed to helping organizations overcome these challenges with a combination of technology, people, and processes that reduce complexity and strengthen protection.”

The report also cites Gartner research, which suggests that by the end of 2025, 99 percent of cloud security failures will be attributed to customer-side misconfigurations, and 80 percent of data breaches will share the same root cause. It states that most organizations have acquired the necessary tools and hired capable personnel; however, they’re lacking consistent processes and workflows for effective security.

How to solve these misconfiguration gaps

Not all is lost, as SonicWall includes a few steps within the report on how to best approach this issue.

According to SonicWall, you need disciplined execution of proven practices, including:

  • Starting with identity and access fundamentals, single sign-on (SSO) and multi-factor authentication (MFA) remain effective in reducing credential-based attacks. Implementing role-based access controls to prevent privilege creep and setting up monitoring for unusual login patterns are critical, along with choosing a unified identity provider.
  • Build security into your applications from the ground up: Having input validation, server-side access controls, and proper session management built into applications is beneficial. They can be used to establish baseline behavior patterns and identify anomalies before they escalate into incidents.
  • Treat configuration management as an ongoing discipline: Configuration management shouldn’t be treated as a one-time project, and organizations should invest in tools that automatically enforce configuration baselines and catch unauthorized changes in real-time. Set up policy templates and schedule regular audits.
  • Be honest about your operational capabilities: SonicWall states that breaches can occur because organizations lack the proper staff or expertise to utilize the right technology. Organizations should consider co-managed or fully managed services that can fill the gaps.

Having the right tools for cyber resilience is crucial for organizations, and some of the best tools come from partnerships within the channel. Read more about Cohesity and Semperis partnering on cyber resilience and ID security.

thumbnail Jordan Smith

Jordan Smith is a news writer who has seven years of experience as a journalist, copywriter, podcaster, and copyeditor. He has worked with both written and audio media formats, contributing to IT publications such as MeriTalk, HCLTech, and Channel Insider, and participating in podcasts and panel moderation for IT events.

Recommended for you...

thumbnail Scale Computing Makes Strategic Updates to HyperCore Solution
Infrastructure
Scale Computing Makes Strategic Updates to HyperCore Solution
Jordan Smith
Sep 17, 2025
thumbnail Druva Launches Metadata Graphing & New Agentic AI Solutions
AI
Druva Launches Metadata Graphing & New Agentic AI Solutions
Jordan Smith
Sep 17, 2025
thumbnail SonicWall’s Michael Crean on State of Managed Security
Security
SonicWall’s Michael Crean on State of Managed Security
Victoria Durgin
Sep 17, 2025
thumbnail Gigamon Unveils Agentic AI App to Boost IT Productivity
AI
Gigamon Unveils Agentic AI App to Boost IT Productivity
Luis Millares
Sep 16, 2025
Channel Insider Logo

Channel Insider combines news and technology recommendations to keep channel partners, value-added resellers, IT solution providers, MSPs, and SaaS providers informed on the changing IT landscape. These resources provide product comparisons, in-depth analysis of vendors, and interviews with subject matter experts to provide vendors with critical information for their operations.

facebook
linkedin
youtube
rss
spotify
x

Company

About us Contact us Advertise with us

Categories

Channel Business Security AI Infrastructure Lists & Awards

Property of TechnologyAdvice. © 2025 TechnologyAdvice. All Rights Reserved

Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

Terms of Service Privacy Policy California - Do Not Sell My Information