September 18, 2023

Rewterz Threat Alert – Lumma Stealer Malware aka LummaC – Active IOCs

Severity Medium Analysis Summary Lumma is an information stealer that is sold as a Malware-as-a-Service (MaaS) on Russian-speaking underground forums and Telegram. Lumma is an information […]

September 18, 2023

Rewterz Threat Advisory – Multiple WordPress Plugins Vulnerabilities

Severity Medium Analysis Summary CVE-2023-4948 CVSS:4.3 WooCommerce CVR Payment Gateway Plugin for WordPress could allow a remote attacker to bypass security restrictions, caused by missing capability […]

September 18, 2023

Rewterz Threat Update – Microsoft Teams Used for Stealing Accounts by Ransomware Access Broker

Severity High Analysis Summary Microsoft has stated that a ransomware group working with an initial access broker has recently started using Microsoft Teams for their phishing […]

September 18, 2023

Rewterz Threat Alert – Lumma Stealer Malware aka LummaC – Active IOCs

Severity Medium Analysis Summary Lumma is an information stealer that is sold as a Malware-as-a-Service (MaaS) on Russian-speaking underground forums and Telegram. Lumma is an information […]

September 18, 2023

Rewterz Threat Advisory – Multiple WordPress Plugins Vulnerabilities

September 18, 2023

Rewterz Threat Update – Microsoft Teams Used for Stealing Accounts by Ransomware Access Broker

Severity High Analysis Summary Microsoft has stated that a ransomware group working with an initial access broker has recently started using Microsoft Teams for their phishing […]

Rewterz Threat Advisory – CVE-2023-33246 – Apache RocketMQ Vulnerability

May 24, 2023

Rewterz Threat Alert – APT37 aka GoldBackDoor Group – Active IOCs

May 25, 2023

Rewterz Threat Advisory – CVE-2023-30440 – IBM PowerVM Hypervisor Vulnerability

May 24, 2023

Severity

Medium

Analysis Summary

CVE-2023-30440

IBM PowerVM Hypervisor could allow a local attacker with control a partition that has been assigned SRIOV virtual function (VF) to cause a denial of service to a peer partition or arbitrary data corruption.

Impact

Denial of Service

Indicators Of Compromise

CVE

CVE-2023-30440

Affected Vendors

IBM

Affected Products

IBM PowerVM Hypervisor FW950.00
IBM PowerVM Hypervisor FW1010.00
IBM PowerVM Hypervisor FW1020.00
IBM PowerVM Hypervisor FW1030.10
IBM PowerVM Hypervisor FW950.70
IBM PowerVM Hypervisor FW1010.50
IBM PowerVM Hypervisor FW1020.30
IBM PowerVM Hypervisor FW1030.00
IBM PowerVM Hypervisor FW860.00
IBM PowerVM Hypervisor FW860.B3

Remediation

Refer to IBM Security Bulletin for patch, upgrade or suggested workaround information.

IBM Security Bulletin

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

Rewterz Threat Alert – Lumma Stealer Malware aka LummaC – Active IOCs

Rewterz Threat Advisory – Multiple WordPress Plugins Vulnerabilities

Rewterz Threat Update – Microsoft Teams Used for Stealing Accounts by Ransomware Access Broker

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

Rewterz Threat Alert – Lumma Stealer Malware aka LummaC – Active IOCs

Rewterz Threat Advisory – Multiple WordPress Plugins Vulnerabilities

Rewterz Threat Update – Microsoft Teams Used for Stealing Accounts by Ransomware Access Broker

Threat Insights

About Us

Our Leadership

CSR

Connect with Us