HydraCrypt Ransomware Targets Brazil and Charges $5,000 for Decryption
Overview The SonicWall Capture Labs threat research team has recently been tracking ransomware known as HydraCrypt. HydraCrypt originates from the CryptBoss ransomware family and was first seen in early 2016. The sample that we analyzed […]
Atlassian’s Confluence Server Unauthenticated Remote Code Execution
Overview The SonicWall Capture Labs threat research team became aware of a noteworthy vulnerability—an Unauthenticated Template Injection —in Atlassian Confluence platforms, assessed its impact and developed mitigation measures for it. Atlassian’s Confluence Server and Data […]
Microsoft Security Bulletin Coverage for April 2024
Overview Microsoft’s April 2024 Patch Tuesday has 147 vulnerabilities, 68 of which are Remote Code Execution (RCE) vulnerabilities. The SonicWall Capture Labs threat research team has analyzed and addressed Microsoft’s security advisories for April 2024 […]
Cryptominer Poses as Fake Java Utility
Overview The SonicWall Capture Labs threat research team analyzed a malware purporting to be a Java utility. It arrives as an installer for Java Access Bridge, but ultimately installs the popular open-source cryptominer, XMRig. Infection […]
Multiple Remote Code Execution Vulnerabilities in JumpServer
Overview The SonicWall Capture Labs threat research team became aware of a couple of remote code execution vulnerabilities in JumpServer, assessed their impact and developed mitigation measures. JumpServer is an open-source bastion host and a […]
HydraCrypt Ransomware Targets Brazil and Charges $5,000...April 22, 2024 - 12:39 pm- Atlassian’s Confluence Server Unauthenticated Remote Code...April 19, 2024 - 2:24 pm
SonicWall DPI-SSL: Encryption Has Met Its MatchApril 10, 2024 - 3:48 pm- Microsoft Security Bulletin Coverage for April 2024April 9, 2024 - 1:18 pm
This post is also available in: Portuguese (Brazil) French German Japanese Korean Spanish