Confluence Data Center and Server Remote Code Execution Vulnerability
Overview The SonicWall Capture Labs threat research team became aware of a remote code execution vulnerability in the Atlassian Confluence Data Center and Server, assessed its impact and developed mitigation measures. Confluence Server is a […]
WordPress Unauthenticated Arbitrary SQL Execution Vulnerability
Overview The SonicWall Capture Labs threat research team became aware of a noteworthy vulnerability –an SQL injection in the WordPress plugin Automatic by ValvePress – assessed its impact and developed mitigation measures for it. Around […]
Politically Charged Ransomware Weaponized as a File Destroyer
The SonicWall Capture Labs threat research team has been observing a growth of malware built using the Chaos ransomware builder. The sample we have analyzed here is built using this kit, however, it is not […]
MICROSOFT SECURITY BULLETIN COVERAGE FOR MAY 2024
Overview Microsoft’s May 2024 Patch Tuesday has 59 vulnerabilities, 25 of which are Remote Code Execution vulnerabilities. The SonicWall Capture Labs threat research team has analyzed and addressed Microsoft’s security advisories for the month of […]
Remcos Is Pairing with PrivateLoader to Extend Its Capabilities
Overview This week, the SonicWall Capture Labs threat research team investigated a sample of the RemcosRAT that uses a PrivateLoader module to provide additional data and persistence on the victim’s machine. By installing VB scripts, […]
SonicWall 2024 Mid-Year Cyber Threat Report: IoT Madness,...July 23, 2024 - 11:14 am
Something Phishy This Way Comes: How the SonicWall SOC Proactively...July 23, 2024 - 8:54 am
SonicWall Elevates MSP Platform with Cloud Secure Edge ...July 18, 2024 - 8:05 am
Critical Splunk Vulnerability CVE-2024-36991: Patch Now...July 17, 2024 - 1:36 pm
This post is also available in: Portuguese (Brazil) French German Japanese Korean Spanish