StrelaStealer Resurgence: Tracking a JavaScript-Driven Credential Stealer Targeting Europe
The SonicWall Capture Labs threat research team has been tracking StrelaStealer for a long time. Recently, in the third week of June, we observed a huge spike in JavaScript spreading StrelaStealer. StrelaStealer specifically steals Outlook […]
Windows PHP Servers in CGI Mode Vulnerable to Exploitation (CVE-2024-4577)
Overview The SonicWall Capture Labs threat research team became aware of an exploited-in-the-wild information disclosure vulnerability affecting the Windows-based PHP servers used in CGI mode. Identified as CVE-2024-4577 and given a CVSSv3 score of 9.8, […]
Microsoft Security Bulletin Coverage for June 2024
Overview Microsoft’s June 2024 Patch Tuesday has 49 vulnerabilities, 24 of which are Elevation of Privilege. The SonicWall Capture Labs threat research team has analyzed and addressed Microsoft’s security advisories for the month of June […]
Critical Path Traversal Vulnerability in Check Point Security Gateways (CVE-2024-24919)
Overview The SonicWall Capture Labs threat research team became aware of an exploited-in-the-wild information disclosure vulnerability affecting the Check Point Security Gateways. Identified as CVE-2024-24919 and given a CVSSv3 score of 8.6, the vulnerability is […]
INC Ransomware Behind Linux Threat
Overview This week, the SonicWall Capture Labs Research team analyzed a sample of Linux ransomware. The group behind this ransomware, called INC Ransomware, has been active since it was first reported a year ago. Infection […]
SonicWall 2024 Mid-Year Cyber Threat Report: IoT Madness,...July 23, 2024 - 11:14 am
Something Phishy This Way Comes: How the SonicWall SOC Proactively...July 23, 2024 - 8:54 am
SonicWall Elevates MSP Platform with Cloud Secure Edge ...July 18, 2024 - 8:05 am
Critical Splunk Vulnerability CVE-2024-36991: Patch Now...July 17, 2024 - 1:36 pm
This post is also available in: Portuguese (Brazil) French German Japanese Korean Spanish