All / Spotlight / Malware / Ransomware / Intrusions By DateAlphabetical SysAid Path Traversal Vulnerability November 21, 2023 Overview SonicWall Capture Labs Threat Research Team became aware of the SysAid path traversal vulnerability, assessed its impact and developed mitigation measures for the vul … Payola ransomware operator demands remote access ... November 3, 2023 The Sonicwall threat research team have recently been tracking a new ransomware family called Payola. This family of ransomware appeared in late August 2023. It is written in … A look at the latest Snatch Ransomware September 22, 2023 This week, the Sonicwall Capture Labs Research team analyzed the latest Snatch ransomware. Snatch operates as a ransomware-as-a-service (RaaS), a business model where the malw … RZML ransomware exfiltrates files, cookies and c ... September 8, 2023 The SonicWall Capture Labs threats research team has been tracking a recent family of ransomware called RZML. This ransomware appeared in the wild over the last 7 days and ap … RunpeX Abuses Legitimate AntiMalware Driver August 11, 2023 Bring Your Own Vulnerable Driver (BYOVD) A new variant from Chaos Ransomware family surfa ... August 1, 2023 The SonicWall Capture Labs Research team has received a sample of a new variant from Chaos Ransomware family which is a customizable ransomware builder that emerged in undergr … Barracuda ES Gateway Reverse Shell Vulnerability June 23, 2023 Overview: SonicWall Capture Labs Threat Research Team has observed the following threat: The Barracuda Email Security Gateway is a comprehensive email … Akira ransomware double-extortion scheme encrypt ... May 19, 2023 The SonicWall Capture Labs threats research team has been tracking a newly discovered form of ransomware called “Akira”. This malicious software is actively targeting numerous … Money message Ransomware actively targeting larg ... April 18, 2023 Recently, the SonicWall Capture Labs Research team analyzed a ransomware called Money message. Written in C++, this ransomware encrypts the victim’s files without changing the … Microsoft Security Bulletin Coverage for April 2 ... April 11, 2023 SonicWall Capture Labs threat research team has analyzed and addressed Microsoft’s security advisories for the month of April 2023. Vohuk Ransomware uses Cipher.exe making files re ... February 21, 2023 Vohuk Ransomware uses the genuine Windows tool Cipher.exe to overwrite the deleted files which make the recovery of the files impossible. LockBit 3.0 'Black' targets large corp ... February 10, 2023 LockBit 3.0, also known as LockBit Black, is a ransomware family that operates under the Ransomware-as-a-Service (RaaS) model, where the creators collaborate with affiliates w …