All / Spotlight / Malware / Ransomware / Intrusions By DateAlphabetical phpIPAM SQL Injection Vulnerability March 10, 2023 Overview: SonicWall Capture Labs Threat Research Team has observed the following threat: phpIPAM is a free and open-source web-based IP address managem … OneNote files are being used to deliver fileless ... March 7, 2023 SonicWall RTDMI detected OneNote malicious file is not detected by any security providers available on popular threat intelligence sharing portals like the VirusTotal and the … A multifunction trojan targeting Linux hosts has ... March 3, 2023 This week, the Sonicwall Capture Labs Research team analyzed a Trojan downloader targeting Linux environments. This Trojan has been around since 2019, but has not been active … Froxlor 2.0.6 RCE Vulnerability March 3, 2023 Overview: SonicWall Capture Labs Threat Research Team has observed the following threat: Froxlor is a web-based server management panel that allows use … Vohuk Ransomware uses Cipher.exe making files re ... February 21, 2023 Vohuk Ransomware uses the genuine Windows tool Cipher.exe to overwrite the deleted files which make the recovery of the files impossible. Microsoft OneNote files are widely used to deliv ... February 14, 2023 SonicWall RDTMI detecting a spike of malicious OneNote files are being delivered to the victim’s machine as an email attachments. Linux Kernel ksmbd Integer Underflow Vulnerabili ... February 10, 2023 Overview: SonicWall Capture Labs Threat Research Team has observed the following threat: KSMBD stands for Kernel-based SMB Direct. It’s a Linux kernel … Zoho ManageEngine SAML Response RCE Vulnerabilit ... February 3, 2023 Overview: SonicWall Capture Labs Threat Research Team has observed the following threat: ManageEngine is a subsidiary of Zoho Corporation that provides … Magniber ransomware seen distributed via ISO dis ... January 27, 2023 This week, the Sonicwall Capture Labs Research team analyzed a ransomware called Magniber. This ransomware has been around since 2017 as a successor to Cerber and initially o … Adobe ColdFusion Heap Buffer Overflow Vulnerabil ... January 27, 2023 Overview: SonicWall Capture Labs Threat Research Team has observed the following threat: Adobe ColdFusion is an application development platform by Ado … daloRADIUS Web Management RCE January 6, 2023 Overview: SonicWall Capture Labs Threat Research Team has observed the following threat: daloRADIUS is an advanced RADIUS web management application ai … Cryptonite Ransomware leaves files unrecoverable December 16, 2022 This week, the Sonicwall Capture Labs Research team analyzed a ransomware called Cryptonite. It is an open-sourced ransomware that was once available on GitHub but has now bee …