all InfoSec news
Another Malware with Persistence
Security Boulevard securityboulevard.com
Here’s a piece of Chinese malware that infects SonicWall security appliances and survives firmware updates.
On Thursday, security firm Mandiant published a report that said threat actors with a suspected nexus to China were engaged in a campaign to maintain long-term persistence by running malware on unpatched SonicWall SMA appliances. The campaign was notable for the ability of the malware to remain on the devices even after its firmware received new firmware.
“The attackers put significant effort into the stability …
attackers campaign china chinese devices firmware firmware updates malware mandiant nexus persistence piece report security sma sonicwall sonicwall sma threat threat actors unpatched updates