Commvault Clients Should Beware Of Campaign Targeting Cloud Applications, CISA Says
The Record, Friday, May 23rd, 2025
Federal cyber defenders are warning that hackers are targeting the cloud environments of clients of data management giant Commvault.
The New Jersey-based company previously said it was notified by Microsoft in February of a data breach caused by an unnamed nation-state threat actor that allowed access to 'a subset of app credentials that certain Commvault customers use to authenticate their M365 environments.'
On Thursday evening, the Cybersecurity and Infrastructure Security Agency (CISA) warned that Commvault is 'monitoring cyber threat activity targeting their applications hosted in their Microsoft Azure cloud environment.'