Cybercriminals are impersonating a legitimate SonicWall app to distribute a Trojanized version that steals users' VPN credentials. In a recent alert, SonicWall and Microsoft noted the distribution of a hacked NetExtender installer, which is being falsely presented as the official version. Victims downloading the app from spoofed sites unknowingly install malware that captures sensitive information like usernames and passwords, sending this data to attackers. This tactic poses significant risks, particularly given SonicWall's history of being targeted by various cybercriminals.
Users were deceived into downloading a Trojanized version of SonicWall's VPN app, stealing sensitive VPN credentials and sending them to an attacker-controlled server.
The attackers utilized a modified installer of SonicWall's NetExtender app, digitally signed with a fraudulent certificate, to execute their credential-stealing scheme.
Collection
[
|
...
]