Commvault, a global leader in data protection and information management, has confirmed that a sophisticated cyberattack involving a zero-day vulnerability breached its Azure cloud environment earlier this week.
The breach, attributed to a suspected nation-state threat actor, underscores the evolving risks faced by cloud service providers and their clients.
On February 20, 2025, Commvault was alerted by Microsoft regarding unauthorized activity in its Azure cloud environment.
.png
)
In a public statement, Commvault detailed its immediate response, which included activating its incident response protocols and engaging top-tier cybersecurity experts alongside law enforcement.
The company’s investigation revealed that the incident impacted a small number of customers. “Our investigation validated that unauthorized access affected a handful of customers and we promptly contacted them to assist,” said a spokesperson for Commvault.
The firm emphasized there was no evidence that the attacker accessed or compromised any of the data Commvault protects on behalf of its vast customer base.
Furthermore, Commvault confirmed that its business operations and ability to deliver products and services remained unaffected throughout the incident.
Details of the Attack and Response
According to forensic analysis, the attacker exploited a previously undisclosed zero-day vulnerability within Commvault’s Azure cloud environment type of security gap that even the vendor was previously unaware of.
As soon as the exploit was identified, Commvault acted swiftly to patch the vulnerability and strongly encouraged its software users to apply the update as well.
In addition to patching the vulnerability, Commvault said it rotated all impacted credentials and is working to further strengthen its security defenses.
The company is also maintaining close collaboration with law enforcement to aid in the ongoing investigation and to help prevent future attacks.
Commvault’s leadership acknowledged the broader impact of such attacks on the tech community, stating, “No company is immune to an attack. We believe that sharing information and working together makes us all more resilient.”
The company expressed gratitude to Microsoft for the timely notification, its cybersecurity experts for their rapid response, and to its customers for their trust and cooperation.
The incident serves as a reminder of the persistent and evolving nature of cyber threats targeting cloud services and managed providers.
By sharing details of the breach and its response, Commvault aims to promote greater transparency and collective action across the cybersecurity landscape.
Find this News Interesting! Follow us on Google News, LinkedIn, & X to Get Instant Updates!
