GitLab Account Takeover
Overview The SonicWall Capture Labs threat research team became aware of an account takeover via password reset vulnerability in GitLab, assessed its impact and developed mitigation measures for the vulnerability. GitLab, an open-source code-sharing platform, […]
Dangerous New Diavol Ransomware
Overview The SonicWall Capture Labs threat research team has recently observed a new variant of Diavol ransomware. The ransomware executes its malicious activities by utilizing bitmap objects containing binary code and paired JPEG objects containing […]
Infostealer Trojan with Remote Access and Ransomware Capabilities Seen in the Wild
This week, the Sonicwall Capture Labs threat research team analyzed a full-featured infostealer and remote access trojan that also has ransomware functionality built in. This trojan is capable of terminating applications, logging keystrokes, opening web […]
Microsoft Security Bulletin Coverage for January 2024
SonicWall Capture Labs threat research team has analyzed and addressed Microsoft’s security advisories for the month of January 2024.
SMTP Smuggling
Overview The SonicWall Capture Labs threat research team has observed attackers targeting Simple Mail Transfer Protocol (SMTP) to send spoofed emails that can bypass traditional authentication mechanisms. A flaw tracked as three separate CVEs, CVE_2023_51764, […]
SonicWall at RSAC 2024: The Art of the PlatformApril 24, 2024 - 3:34 pm
Analysis of Native Process CLR Hosting Used by AgentTes...April 23, 2024 - 2:15 pm- HydraCrypt Ransomware Targets Brazil and Charges $5,000...April 22, 2024 - 12:39 pm
- Atlassian’s Confluence Server Unauthenticated Remote Code...April 19, 2024 - 2:24 pm
This post is also available in: Portuguese (Brazil) French German Japanese Korean Spanish