December 3, 2023

Rewterz Threat Update – Southeast Asian Banking Apps Targeted By New FjordPhantom Android Malware

Severity High Analysis Summary A new and sophisticated Android malware, named FjordPhantom, has been disclosed by cybersecurity researchers. The malware targets users in Southeast Asian countries, […]

December 3, 2023

Rewterz Threat Alert – A New Gh0st RAT Malware Variant Targets South Korea and Uzbekistan – Active IOCs

Severity High Analysis Summary The notorious Gh0st RAT malware has been identified with a new variant dubbed “SugarGh0st RAT” used in recent cyber campaigns targeting the […]

December 3, 2023

Rewterz Threat Advisory – Multiple GitLab Community and Enterprise Edition Vulnerabilities

Severity High Analysis Summary CVE-2023-6033 CVSS:8.7 GitLab Community and Enterprise Edition are vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote authenticated […]

December 3, 2023

Rewterz Threat Update – Southeast Asian Banking Apps Targeted By New FjordPhantom Android Malware

December 3, 2023

Rewterz Threat Alert – A New Gh0st RAT Malware Variant Targets South Korea and Uzbekistan – Active IOCs

Severity High Analysis Summary The notorious Gh0st RAT malware has been identified with a new variant dubbed “SugarGh0st RAT” used in recent cyber campaigns targeting the […]

December 3, 2023

Rewterz Threat Advisory – Multiple GitLab Community and Enterprise Edition Vulnerabilities

Rewterz Threat Advisory – CVE-2019-7092 Unspecified Cross Site Scripting Vulnerability

February 13, 2019

Rewterz Threat Alert – Hidden Cobra’s Skype-Job Campaign Targeting Inter-Bank Networks

February 14, 2019

Rewterz Threat Advisory -CVE-2019-7304 – Linux Local Privilege Escalation vulnerability via Snapd Socket

February 14, 2019

Severity: High

Analysis Summary

The remote socket address is incorrectly validated and parsed when performing access controls on its UNIX socket. A local attacker could use this to access privileged socket APIs and obtain administrator privileges. The vulnerability resides in the REST API for snapd service, a universal Linux packaging system that makes an application compatible for various Linux distributions without requiring any modiﬁcation.

Impact

Privilege escalation

System access

Affected Products

snapd 2.28 through 2.37

Remediation

Vendor has released updates for the aﬀected products. Update to patched version.

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

Rewterz Threat Update – Southeast Asian Banking Apps Targeted By New FjordPhantom Android Malware

Rewterz Threat Alert – A New Gh0st RAT Malware Variant Targets South Korea and Uzbekistan – Active IOCs

Rewterz Threat Advisory – Multiple GitLab Community and Enterprise Edition Vulnerabilities

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

Rewterz Threat Update – Southeast Asian Banking Apps Targeted By New FjordPhantom Android Malware

Rewterz Threat Alert – A New Gh0st RAT Malware Variant Targets South Korea and Uzbekistan – Active IOCs

Rewterz Threat Advisory – Multiple GitLab Community and Enterprise Edition Vulnerabilities

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Rewterz Threat Advisory – CVE-2019-7092 Unspecified Cross Site Scripting Vulnerability

Rewterz Threat Alert – Hidden Cobra’s Skype-Job Campaign Targeting Inter-Bank Networks