MICROSOFT SECURITY BULLETIN COVERAGE FOR MAY 2024
Overview Microsoft’s May 2024 Patch Tuesday has 59 vulnerabilities, 25 of which are Remote Code Execution vulnerabilities. The SonicWall Capture Labs threat research team has analyzed and addressed Microsoft’s security advisories for the month of […]
Remcos Is Pairing with PrivateLoader to Extend Its Capabilities
Overview This week, the SonicWall Capture Labs threat research team investigated a sample of the RemcosRAT that uses a PrivateLoader module to provide additional data and persistence on the victim’s machine. By installing VB scripts, […]
XWiki Remote Code Execution Vulnerability
Overview The SonicWall Capture Labs threat research team became aware of CVE-2024-31984, which is a code injection vulnerability in XWiki’s management of space titles and has a critical CVSS score of 9.9. After assessing the […]
Anti-Ransomware Day 2024: It’s Time to Eat Your Broccoli
Too Much Ice Cream May 12th, 2017 – a day that lives in infamy for all cybersecurity professionals. It was on this day that the WannaCry ransomware attack was unleashed, devastating hundreds of thousands around […]
CrushFTP Server-Side Template Injection (SSTI)
Overview SonicWall Capture Labs threat research team became aware of a fully unauthenticated server-side template injection vulnerability within CrushFTP, assessed its impact, and developed mitigation measures. CrushFTP is an enterprise file transfer tool. Such tools […]
MICROSOFT SECURITY BULLETIN COVERAGE FOR MAY 2024May 14, 2024 - 11:52 pm
RSAC 2024: Don’t Call It a Comeback, We’ve Been Here...May 14, 2024 - 2:15 pm
Experience Seamless Onboarding with SonicExpress 2.4.0May 14, 2024 - 12:04 pm- Remcos Is Pairing with PrivateLoader to Extend Its Capa...May 14, 2024 - 11:06 am
This post is also available in: Portuguese (Brazil) French German Japanese Korean Spanish