Another Malware with Persistence | allinfosecnews.com

March 10, 2023, 1:33 a.m. | Bruce Schneier

Schneier on Security www.schneier.com

Here’s a piece of Chinese malware that infects SonicWall security appliances and survives firmware updates.

On Thursday, security firm Mandiant published a report that said threat actors with a suspected nexus to China were engaged in a campaign to maintain long-term persistence by running malware on unpatched SonicWall SMA appliances. The campaign was notable for the ability of the malware to remain on the devices even after its firmware received new firmware.

“The attackers put significant effort into the stability …

attackers campaign china chinese devices firmware firmware updates malware mandiant nexus persistence piece report security sma sonicwall sonicwall sma threat threat actors unpatched updates

More from www.schneier.com / Schneier on Security

Rare Interviews with Enigma Cryptanalyst Marian Rejewski 6 hours ago | www.schneier.com

crack cryptanalysis enigma history of cryptography +5

The UK Bans Default Passwords 1 day, 6 hours ago | www.schneier.com

act and telecommunications ban bans +19

AI Voice Scam 2 days, 6 hours ago | www.schneier.com

artificial intelligence bbc money scam +4

WhatsApp in India 3 days, 6 hours ago | www.schneier.com

courts encryption end end-to-end +5

Whale Song Code 4 days, 6 hours ago | www.schneier.com

basic broadcast code cold +18

Friday Squid Blogging: Searching for the Colossal Squid 6 days, 20 hours ago | www.schneier.com

blog blogging can cruise +7

Long Article on GM Spying on Its Cars’ Drivers 1 week ago | www.schneier.com

article cars companies data +10

The Rise of Large-Language-Model Optimization 1 week, 1 day ago | www.schneier.com

artificial intelligence coming easy end +12

Dan Solove on Privacy Regulation 1 week, 2 days ago | www.schneier.com

academic papers article consent dan +6

Intern, Cyber Security Vulnerability Management

@ Grab | Petaling Jaya, Malaysia

View on infosec-jobs.com

Compliance - Global Privacy Office - Associate - Bengaluru

@ Goldman Sachs | Bengaluru, Karnataka, India

View on infosec-jobs.com

Cyber Security Engineer (m/w/d) Operational Technology

@ MAN Energy Solutions | Oberhausen, DE, 46145

View on infosec-jobs.com

Armed Security Officer - Hospital

@ Allied Universal | Sun Valley, CA, United States

View on infosec-jobs.com

Governance, Risk and Compliance Officer (Africa)

@ dLocal | Lagos (Remote)

View on infosec-jobs.com

Junior Cloud DevSecOps Network Engineer

@ Accenture Federal Services | Arlington, VA

View on infosec-jobs.com