MOVEit SQL Injection Vulnerability
Overview: SonicWall Capture Labs Threat Research Team has observed the following threat: MOVEit provides secure collaboration and automated file transfers of sensitive data and advanced workflow automation capabilities without the need for scripting. Encryption and […]
Fake ChatGPT installs an infostealer
With the popularity of ChatGPT, an artificial intelligence (AI) chatbot, cybercriminals has been using it to lure unsuspecting victims to online scams. Recently, the Sonicwall Capture Labs Research team has come across a scam promising […]
Code-Projects SQLi Bus Dispatch Vulnerability
Overview: SonicWall Capture Labs Threat Research Team has observed the following threat: The vulnerability labeled as CVE-2023-2951 is a critical issue found in the “Code-Projects” Bus Dispatch and Information System version 1.0, specifically involving a […]
GuLoader Demystified: Unraveling its Vectored Exception Handler Approach
In this blog post, we will discuss
Unpacking of GuLoader’s shellcodes.
Understanding a new anti-debug technique deployed by GuLoader.
Deep dive into GuLoader’s custom Vectored Exception Eandler.
Writing an IDAPython script to deobfuscate the control flow of shellcode and to make GuLoader’s analysis easy and fast.
DCN DCBI-Netlog-LAB Remote Command Execution
Vulnerability in the DCBI-Netlog-LAB v1.0 allows attackers to bypass authentication and execute arbitrary commands via a crafted request.
CrushFTP Server-Side Template Injection (SSTI)May 1, 2024 - 9:45 am- Fake Windows Explorer Installs a Crypto MinerApril 30, 2024 - 3:39 pm
Vintage Bugs: Data Shows Old Vulnerabilities Still Menace...April 30, 2024 - 1:00 am- Android Remote Access Trojan Equipped to Harvest Creden...April 29, 2024 - 11:32 am
This post is also available in: Portuguese (Brazil) French German Japanese Korean Spanish