Vohuk Ransomware uses Cipher.exe making files recovery impossible
Vohuk Ransomware uses the genuine Windows tool Cipher.exe to overwrite the deleted files which make the recovery of the files impossible.
Microsoft Security Bulletin Coverage for February 2023
SonicWall Capture Labs threat research team has analyzed and addressed Microsoft’s security advisories for the month of February 2023.
Microsoft OneNote files are widely used to deliver malware payloads
SonicWall RDTMI detecting a spike of malicious OneNote files are being delivered to the victim’s machine as an email attachments.
LockBit 3.0 'Black' targets large corps. Operator demands $9M for decryption
LockBit 3.0, also known as LockBit Black, is a ransomware family that operates under the Ransomware-as-a-Service (RaaS) model, where the creators collaborate with affiliates who may not have the resources to create and deploy attacks. […]
Linux Kernel ksmbd Integer Underflow Vulnerability
Overview: SonicWall Capture Labs Threat Research Team has observed the following threat: KSMBD stands for Kernel-based SMB Direct. It’s a Linux kernel module that provides the implementation of the SMBv3 protocol, allowing the Linux kernel […]
SonicWall 2024 Mid-Year Cyber Threat Report: IoT Madness,...July 23, 2024 - 11:14 am
Something Phishy This Way Comes: How the SonicWall SOC Proactively...July 23, 2024 - 8:54 am
SonicWall Elevates MSP Platform with Cloud Secure Edge ...July 18, 2024 - 8:05 am
Critical Splunk Vulnerability CVE-2024-36991: Patch Now...July 17, 2024 - 1:36 pm
This post is also available in: Portuguese (Brazil) French German Japanese Korean Spanish