SonicWall Warns: Trojanized NetExtender VPN Client Stealing Credentials in Active Campaign

June 24, 2025

SonicWall Warns: Trojanized NetExtender VPN Client Stealing Credentials in Active Campaign

SonicWall, in collaboration with Microsoft Threat Intelligence (MSTIC), has uncovered a sophisticated campaign that distributes a Trojanized version of SonicWall’s NetExtender VPN client, masquerading …

Published Date:
Jun 25, 2025 (51 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2025-36537

CVE-2024-40766

Source: Read More

Previous ArticleTeamViewer Remote Management Bug (CVE-2025-36537) Enables Privilege Escalation

Next Article Double Injection Risk in NVIDIA Megatron-LM: Code Execution Flaws Patched in v0.12.1

Highlights

CVE-2025-4542 – Freeebird Hotel Cross-Domain Policy Vulnerability

May 11, 2025

CVE ID : CVE-2025-4542

Published : May 11, 2025, 6:15 p.m. | 2 hours, 14 minutes ago

Description : A vulnerability, which was classified as problematic, has been found in Freeebird Hotel 酒店管理系统 API up to 1.2. Affected by this issue is some unknown functionality of the file /src/main/java/cn/mafangui/hotel/tool/SessionInterceptor.java. The manipulation leads to permissive cross-domain policy with untrusted domains. The attack may be launched remotely. The complexity of an attack is rather high. The exploitation is known to be difficult. The exploit has been disclosed to the public and may be used.

Severity: 3.1 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Agent Mode for Gemini added to Android Studio

Google’s Agent2Agent protocol finds new home at the Linux Foundation

Decoding The SVG path Element: Curve And Arc Commands

This week in AI dev tools: Gemini 2.5 Pro and Flash GA, GitHub Copilot Spaces, and more (June 20, 2025)

Microsoft is reportedly planning yet more major cuts at Xbox — as early as next week

Microsoft makes Windows 10 security updates FREE for an extra year — but there’s a catch, and you might not like it

“Deus Ex” just turned 25 years old and it’s still the best PC game of all time — you only need $2 to play it on practically anything

Where to buy a Meta Quest 3S Xbox Edition — and why it’s a better bargain than the “normal” Meta Quest 3S

Vite 7.0 Is Out

Vite 7.0 Is Out

Exploring JavaScript ES2025 Edition

Mastering Mixed DML Operations in Apex

Microsoft is reportedly planning yet more major cuts at Xbox — as early as next week

Microsoft is reportedly planning yet more major cuts at Xbox — as early as next week

Microsoft makes Windows 10 security updates FREE for an extra year — but there’s a catch, and you might not like it

“Deus Ex” just turned 25 years old and it’s still the best PC game of all time — you only need $2 to play it on practically anything

SonicWall Warns: Trojanized NetExtender VPN Client Stealing Credentials in Active Campaign

SonicWall Warns: Trojanized NetExtender VPN Client Stealing Credentials in Active Campaign

Rogue WordPress Plugin Unmasked: Stealthy Malware Skims Credit Cards & Steals Credentials

Urgent Advantech Alert: Critical Flaws (CVSS 9.6) Expose Industrial Automation to Remote Takeover, PoC Releases

Jill Boisvert Fosters Continuous Learning in Perficient’s Salesforce Practice

Malicious PyPI Package Posing as Solana Tool Stole Source Code in 761 Downloads

CVE-2025-47092 – Adobe Experience Manager Stored XSS

15+ Project Ideas For Laravel Beginners to Practice Their Skills

CVE-2025-4542 – Freeebird Hotel Cross-Domain Policy Vulnerability

I asked Copilot’s AI to predict the outcome of the Europa League final, and now I’m just sad

Kie.ai: Affordable and Reliable 4o Image API(The latest released)

Meet Open-Qwen2VL: A Fully Open and Compute-Efficient Multimodal Large Language Model

SonicWall Warns: Trojanized NetExtender VPN Client Stealing Credentials in Active Campaign

SonicWall Warns: Trojanized NetExtender VPN Client Stealing Credentials in Active Campaign

Related Posts