November 20, 2023

Rewterz Threat Alert – Agent Tesla Malware – Active IOCs

Severity Medium Analysis Summary Agent Tesla is a very popular spyware Trojan built for the.NET framework. Since its initial appearance in 2014, this has been deployed […]

November 19, 2023

Rewterz Threat Alert – STOP (DJVU) Ransomware – Active IOCs

Severity High Analysis Summary The STOP/DJVU ransomware initially made headlines in 2018 and has since been attacking individuals all around the world. It’s widespread on torrent […]

November 19, 2023

Rewterz Threat Advisory – CVE-2023-40363 – IBM InfoSphere Information Server Vulnerability

Severity High Analysis Summary CVE-2023-40363 IBM InfoSphere Information Server 11.7 could allow an authenticated user to change installation files due to incorrect file permission settings. Impact […]

November 20, 2023

Rewterz Threat Alert – Agent Tesla Malware – Active IOCs

Severity Medium Analysis Summary Agent Tesla is a very popular spyware Trojan built for the.NET framework. Since its initial appearance in 2014, this has been deployed […]

November 19, 2023

Rewterz Threat Alert – STOP (DJVU) Ransomware – Active IOCs

Severity High Analysis Summary The STOP/DJVU ransomware initially made headlines in 2018 and has since been attacking individuals all around the world. It’s widespread on torrent […]

November 19, 2023

Rewterz Threat Advisory – CVE-2023-40363 – IBM InfoSphere Information Server Vulnerability

Rewterz Threat Advisory – New Variant of Satan Ransomware

July 5, 2018

Rewterz Threat Advisory – SWIFT-themed Phishing Emails

July 10, 2018

Rewterz Threat Advisory – Cisco Firepower Management Center FTP Security Bypass Vulnerability

July 7, 2018

This is an advisory on a vulnerability found in Cisco Firepower Management Center which can be exploited to bypass a configured URL-based access control policy.

IMPACT: NORMAL

PUBLISH DATE: 12-07-2018

OVERVIEW

An error within the detection engine when handling TCP packets can be exploited to bypass a configured URL-based access control policy.

SUMMARY

The vulnerability exists because the affected software incorrectly handles TCP packets that are received out of order when a TCP SYN retransmission is issued. An attacker could exploit this vulnerability by sending a maliciously crafted connection through an affected device.

AFFECTED PRODUCTS

Cisco Firepower Management Center Software (formerly Cisco FireSIGHT Management Center) Versions 6.0.0, 6.1.0, 6.2.0, 6.2.1, and 6.2.2.

RESOLVE

The vulnerability is reported in the versions 6.0.0, 6.1.0, 6.2.0, 6.2.1, and 6.2.2.

Users are recommended to update their Cisco FirePower Management Software to version 6.2.2.3 or 6.2.3.

If you think you are a victim of a cyber-security attack. Immediately send an email to info@rewterz.com for a rapid response.

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

Rewterz Threat Alert – Agent Tesla Malware – Active IOCs

Rewterz Threat Alert – STOP (DJVU) Ransomware – Active IOCs

Rewterz Threat Advisory – CVE-2023-40363 – IBM InfoSphere Information Server Vulnerability

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

Rewterz Threat Alert – Agent Tesla Malware – Active IOCs

Rewterz Threat Alert – STOP (DJVU) Ransomware – Active IOCs

Rewterz Threat Advisory – CVE-2023-40363 – IBM InfoSphere Information Server Vulnerability

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Rewterz Threat Advisory – New Variant of Satan Ransomware

Rewterz Threat Advisory – SWIFT-themed Phishing Emails