Rewterz Threat ALert – WannaCry Continues to Target Users
September 19, 2019Rewterz Threat Advisory – CVE-2019-14835 – Linux Kernel vhost function privilege escalation Vulnerability
September 19, 2019Rewterz Threat ALert – WannaCry Continues to Target Users
September 19, 2019Rewterz Threat Advisory – CVE-2019-14835 – Linux Kernel vhost function privilege escalation Vulnerability
September 19, 2019Severity
Medium
Analysis Summary
A series of incidents where the credit card skimming attack Magecart was used to hit the booking websites of chain-brand hotels — the second time we’ve seen a Magecart threat actor directly hit ecommerce service providers instead of going for individual stores or third-party supply chains.
Impact
Financial loss
Indicators of Compromise
URLs
- https://googletrackmanager[.]com/gtm[.]js
- googletrackmanager[.]com
Malware Hash (MD5/SHA1/SH256)
- ac58602d149305bd2331d555c15e6292bd5d09c34ade9e5eebb81e9
Remediation
- Block all threat indicators at your respective controls.
- Always be suspicious about emails sent by unknown senders.
- Never click on the link/emails sent by unknown senders.