Microsoft Security Bulletin Coverage for November 2022
SonicWall Capture Labs threat research team has analyzed and addressed Microsoft’s security advisories for the month of November 2022.
OpenSSL X509 Certificate Vulnerabilities
Overview: SonicWall Capture Labs Threat Research Team has observed the following threat: The OpenSSL Project develops and maintains the OpenSSL software a robust, commercial-grade, full-featured toolkit for general-purpose cryptography and secure communication. OpenSSL contains an […]
Follina Vulnerability is being used to deliver Redline info stealer
Malware authors are extensively using C# code to build malware since last few years, due to its simplicity and rich Application Programming Interfaces (API). RedLine is a C# written advanced info stealer active in the wild since 2020.
KeySight RF Sensor Vulnerability
Overview: SonicWall Capture Labs Threat Research Team has observed the following threat: KeySight N6854A Geolocation server software and the N6841A RF Sensor software provide an easy way to configure all of the RF Sensors in […]
Zimbra Collaboration Suite TAR Remote Code Execution
An issue was discovered in Zimbra Collaboration (ZCS) 8.8.15 and 9.0. An attacker can upload arbitrary files through amavisd via a cpio loophole that can lead to incorrect access to any other user accounts.
This post is also available in: Portuguese (Brazil) French German Japanese Korean Spanish