SonicWall warns against fake VPN apps that steal user reports and endanger companies – this is what we know
- Advertisement -
- SonicWall warns that Hackers distribute malignant VPN software
- NetexTender is changed and distributed via fake websites
- The malignant software steals login data and VPN configurations
Hackers are spotted on Spoofing the Sonicwall Netextender SSL VPN Customer and distribution via fake web pages that simulate the official Sonicwall site.
SonicWall and Microsoft Threat information (MSTIC) saw the Trojanized application and gave one advice To warn users against downloading the fake software.
Because NetexTender is used as an external access to VPN client, stolen VPN configuration data and VPN references, both employees and companies are at risk of making a compromise.
Spoofed VPN client distributed via fake website
The fake VPN client is signed by “Citylight Media Private Limited”, giving it a limited level of authenticity that can fool some cyber protection at a low level.
The file is distributed with the help of SEO Poisoning and malvertizing techniques that can make the fake website appear above the authentic site, especially in sponsored results.
That is why SonicWall has reminded users to download only software from legitimate sources, in this case SonicWall.com and mysonicwall.com.
In the study conducted by Sonicwall and MSTIC, they found two modified binary files of their product that were distributed by the fake website; Neservice.exe This was adjusted to bypass digital certificate checks; And NetexTender.exe was adjusted to steal the configuration data and references.
When all the necessary details are entered and the user clicks Connect, the data that contains username, password, domain and more are extracted and sent to an external server that is controlled by the hackers.
Both Sonicwall’s and Microsoft’s cyber security tools can now detect the malignant software, but other third -party software may not have been configured to detect the files. It is always a good idea to Best antivirus software To protect your devices against changed software and malignant files.
Maybe you like it too
- Advertisement -
