February 21, 2026

Firewalls Exploited in 90% of Ransomware Incidents: Cybersecurity Threats Rise

Vaibhav February 21, 2026
Firewalls-Exploited-in-90-of-Ransomware-Incidents-Cybersecurity-Threats-Risedata
Post Views: 1

Ransomware Attacks on Firewalls

A recent report by Barracuda has shed light on the alarming rate at which firewalls are being exploited in ransomware incidents.

Key Findings

The company’s Managed XDR Global Threat Report, which analyzed over two trillion IT events, revealed that a staggering 90% of all ransomware incidents in 2025 originated from compromised firewall instances.

This finding is consistent with other research, such as a study by Sophos, which found that network edge devices, including firewalls, account for nearly 30% of initial compromises.

The Growing Threat of Ransomware

The report highlights the growing threat of ransomware, with the number of active ransomware groups reaching unprecedented levels in 2025.

Victim growth has doubled since 2024, with incidents involving SonicWall firewall appliances and the Akira ransomware group being particularly notable.

These attacks have impacted dozens of organizations, underscoring the need for robust security measures.

Exploitation of Firewalls

The exploitation of firewalls is a critical concern, as these devices are designed to protect networks from unauthorized access.

However, as the report demonstrates, they can also serve as a entry point for malicious actors.

The fact that 90% of ransomware incidents originated from compromised firewalls suggests that these devices are being targeted by cybercriminals, who are using them as a means to gain access to sensitive data and systems.

Recommendations

The report’s findings are a wake-up call for organizations to review their security posture and ensure that their firewalls are properly configured and monitored.

This includes implementing robust security measures, such as intrusion detection and prevention systems, and regularly updating software and firmware to prevent exploitation of known vulnerabilities.

Conclusion

The report’s findings are a timely reminder of the importance of robust security measures in preventing ransomware attacks.

By understanding the tactics and techniques used by cybercriminals, organizations can better protect themselves against these types of threats and reduce the risk of a successful attack.

According to the report, “The exploitation of firewalls is a critical concern, as these devices are designed to protect networks from unauthorized access.”



About Author

Vaibhav

See author's posts

More Stories

Firewalls-Exploited-in-90-of-Ransomware-Incidents-Cybersecurity-Vulnerabilities-Exposeddata

Firewalls Exploited in 90% of Ransomware Incidents: Cybersecurity Vulnerabilities Exposed

Vaibhav February 21, 2026
Global-Cybercrime-Clampdown-Recovers-Over-4-3Mdata

Global Cybercrime Clampdown Recovers Over $4.3M

Vaibhav February 21, 2026
Salt-Typhoon-Threat-Persists-FBI-Official-Warns-of-Ongoing-US-Riskdata

Salt Typhoon Threat Persists: FBI Official Warns of Ongoing US Risk

Vaibhav February 21, 2026

You may have missed

Novel-Starkiller-Phishing-Kit-Utilizes-Legitimate-Login-Sites-for-Malicious-Purposesdata-1

Novel Starkiller Phishing Kit Utilizes Legitimate Login Sites for Malicious Purposes

Vaibhav February 21, 2026
Firewalls-Exploited-in-90-of-Ransomware-Incidents-Cybersecurity-Threats-Risedata

Firewalls Exploited in 90% of Ransomware Incidents: Cybersecurity Threats Rise

Vaibhav February 21, 2026
Firewalls-Exploited-in-90-of-Ransomware-Incidents-Cybersecurity-Vulnerabilities-Exposeddata

Firewalls Exploited in 90% of Ransomware Incidents: Cybersecurity Vulnerabilities Exposed

Vaibhav February 21, 2026
Global-Cybercrime-Clampdown-Recovers-Over-4-3Mdata

Global Cybercrime Clampdown Recovers Over $4.3M

Vaibhav February 21, 2026
Salt-Typhoon-Threat-Persists-FBI-Official-Warns-of-Ongoing-US-Riskdata

Salt Typhoon Threat Persists: FBI Official Warns of Ongoing US Risk

Vaibhav February 21, 2026
en_USEnglish
en_USEnglish