All / Spotlight / Malware / Ransomware / Intrusions By DateAlphabetical Snake Keylogger abusing Protocol Buffers seen in ... March 22, 2023 The Snake keylogger final payload is wrapped by multiple layers of protection, to prevent its detection and analysis New variant of the shellcode malware GuLoader sp ... March 14, 2023 The SonicWall RTDMI is detecting a surge of VBScript files for last few weeks which downloads and executes GuLoader shellcode on the victim’s machine Android malware steals your Google Authenticator ... March 8, 2023 The SonicWall Capture Labs Threat Research team came across a malware campaign that steals device information, card information, and google authenticator code on Android devic … OneNote files are being used to deliver fileless ... March 7, 2023 SonicWall RTDMI detected OneNote malicious file is not detected by any security providers available on popular threat intelligence sharing portals like the VirusTotal and the … A multifunction trojan targeting Linux hosts has ... March 3, 2023 This week, the Sonicwall Capture Labs Research team analyzed a Trojan downloader targeting Linux environments. This Trojan has been around since 2019, but has not been active … Microsoft OneNote files are widely used to deliv ... February 14, 2023 SonicWall RDTMI detecting a spike of malicious OneNote files are being delivered to the victim’s machine as an email attachments. GPcode ransomware leaves victims stranded January 13, 2023 The SonicWall Capture Labs threat reseach team have tracking a well established ransomware family known as GPcode. GPcode ransomware is typically spread through email attachm … Raspberry Robin Malware Is An Obfuscated Onion December 22, 2022 This week, the SonicWall Capture Labs Threat Research Team analyzed a new sample of Raspberry Robin. First observed in May 2022 by Red Canary, Raspberry Robin is a worm that h … TOR chat with Black Basta ransomware operator ru ... November 11, 2022 The SonicWall Capture Labs threat research team has recently been tracking a ransomware family called Black Basta. Black Basta first appeared in April 2022 and is believed to … Emotet Is Back! November 9, 2022 Introduction After several months of hiatus, Emotet is back. SonicWall Capture Labs threat research team has observed starting last week that the notorious malware, which heav … Follina Vulnerability is being used to deliver R ... November 2, 2022 Malware authors are extensively using C# code to build malware since last few years, due to its simplicity and rich Application Programming Interfaces (API). RedLine is a C# w … Fake picture installs a data wiper malware October 14, 2022 The Sonicwall Capture Labs Research team came across a malware which purports to be a picture but has the intention to wipe the hard drive thus deleting data and programs. It …