New Heracles Stealer in the Wild
Overview This week, the SonicWall Capture Labs threat research team analyzed a new sample of an infostealer dubbed ‘Heracles’, which has multiple evasion and persistence techniques. The malware is programmed to search for system credentials, […]
SSH ProxyCommand Command Injection
Overview SonicWall Capture Labs threat research team became aware of a command injection threat within OpenSSH versions before 9.6, assessed its impact, and developed mitigation measures for the vulnerability. OpenSSH is a widely used connectivity […]
GuLoader upgrades its Vectored Exception Handler
Overview For the last three years, GuLoader has gained popularity among threat actors, due to its sophisticated, robust, and powerful defense techniques against security software. The SonicWall Capture Labs Threat Research team has observed that […]
SonicWall Discovers Critical Apache OFBiz Zero-day -AuthBiz
Update 1/2/24 According to our sensor network, SonicWall is seeing a large number of exploitation attempts of CVE-2023-51467. We highly recommend upgrading to Apache OFBiz version 18.12.11 or newer. Overview SonicWall Capture Labs threat research […]
Apache Struts Unauthorized Arbitrary File Upload
Overview The SonicWall Capture Labs threat research team became aware of an unauthorized arbitrary file upload vulnerability in Apache Struts, assessed its impact and developed mitigation measures for the vulnerability. Apache Struts, an open-source MVC […]
CrushFTP Server-Side Template Injection (SSTI)May 1, 2024 - 9:45 am- Fake Windows Explorer Installs a Crypto MinerApril 30, 2024 - 3:39 pm
Vintage Bugs: Data Shows Old Vulnerabilities Still Menace...April 30, 2024 - 1:00 am- Android Remote Access Trojan Equipped to Harvest Creden...April 29, 2024 - 11:32 am
This post is also available in: Portuguese (Brazil) French German Japanese Korean Spanish