MZP Ransomware actively spreading in the wild

MZP Ransomware actively spreading in the wild

The SonicWall Capture Labs Threat Research Team observed reports of a new variant family of MZP ransomware [MZP.RSM] actively spreading in the wild. The MZP ransomware encrypts the victim’s files with a... Read more »
Debug build of Jigsaw Ransomware contains SMTP email credentials

Debug build of Jigsaw Ransomware contains SMTP email credentials

The SonicWall Capture Labs Threat Research Team observed reports of a new version of the Jigsaw ransomware. The version analysed here appears to be an early debug build and sports a new... Read more »
ServHelper 2.0: Enriched with bot capabilities and allow remote desktop access

ServHelper 2.0: Enriched with bot capabilities and allow remote desktop access

SonicWall RTDMI ™ engine has recently detected a Nullsoft Scriptable Install System (NSIS) compiled executable file which executes new variant of ServHelper malware as a final payload. The NSIS binary contains a... Read more »
PDF Phishing campaign uses Google Docs to steal victim's Email credentials

PDF Phishing campaign uses Google Docs to steal victim’s Email credentials

SonicWall Capture Labs Threats Research team has discovered an ongoing phishing campaign which abuses genuine web-based software office suite platform like google docs. Upon opening the PDF file, a blurred image with... Read more »