Notice: Security Advisory (Update)

This post is an update to a blog post that was issued on March 7 as part of our ongoing commitment to protect customer data and share threat intelligence with the cybersecurity community.

What’s Changed  

We are providing an update to the security advisory issued on March 7, 2025. Based on new threat intelligence, we continue to investigate recent activity by a nation-state threat actor contained within our Azure environment. This activity has affected a small number of customers we have in common with Microsoft, and we are working with those customers to provide assistance.

Importantly, there has been no unauthorized access to customer backup data that Commvault stores and protects, and no material impact on our business operations or our ability to deliver products and services. 

We are working closely with two leading cybersecurity firms and are coordinating with the appropriate authorities, including the FBI, Cybersecurity and Infrastructure Security Agency (CISA), and others. 

We have implemented several advanced security measures, including enhanced key rotation and strengthened monitoring rules, and we are sharing best practices and indicators of compromise (IOCs) here. For further support, customers may contact Commvault at SecurityAdvisory@commvault.com. 

We are committed to sharing what we learn as our investigation progresses.

To read the original blog published on March 7, click here.