December 3, 2023

Rewterz Threat Update – Southeast Asian Banking Apps Targeted By New FjordPhantom Android Malware

Severity High Analysis Summary A new and sophisticated Android malware, named FjordPhantom, has been disclosed by cybersecurity researchers. The malware targets users in Southeast Asian countries, […]

December 3, 2023

Rewterz Threat Alert – A New Gh0st RAT Malware Variant Targets South Korea and Uzbekistan – Active IOCs

Severity High Analysis Summary The notorious Gh0st RAT malware has been identified with a new variant dubbed “SugarGh0st RAT” used in recent cyber campaigns targeting the […]

December 3, 2023

Rewterz Threat Advisory – Multiple GitLab Community and Enterprise Edition Vulnerabilities

Severity High Analysis Summary CVE-2023-6033 CVSS:8.7 GitLab Community and Enterprise Edition are vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote authenticated […]

December 3, 2023

Rewterz Threat Update – Southeast Asian Banking Apps Targeted By New FjordPhantom Android Malware

December 3, 2023

Rewterz Threat Alert – A New Gh0st RAT Malware Variant Targets South Korea and Uzbekistan – Active IOCs

Severity High Analysis Summary The notorious Gh0st RAT malware has been identified with a new variant dubbed “SugarGh0st RAT” used in recent cyber campaigns targeting the […]

December 3, 2023

Rewterz Threat Advisory – Multiple GitLab Community and Enterprise Edition Vulnerabilities

Rewterz Threat Advisory – Multiple VMware vRealize Operations (vROps) Vulnerabilities

December 19, 2022

Rewterz Threat Advisory – ICS: Siemens APOGEE PXC Series and Siemens TALON TC Series Vulnerability

December 19, 2022

Rewterz Threat Advisory – ICS: Siemens SIPROTEC 5 Devices Vulnerability

December 19, 2022

Severity

High

Analysis Summary

CVE-2022-45044

Siemens SIPROTEC 5 devices are vulnerable to a denial of service, caused by uncontrolled resource consumption in the SSL and TLS protocols. A remote attacker could exploit this vulnerability to cause a denial of service on ports 443/TCP and 4443/TCP.

Impact

Denial of Service

Indicators Of Compromise

CVE

CVE-2022-45044

Affected Vendors

Siemens

Affected Products

Siemens SIPROTEC 5 6MD85 (CPU variant CP200)
Siemens SIPROTEC 5 6MD85 (CPU variant CP300)
Siemens SIPROTEC 5 6MD86 (CPU variant CP200)
Siemens SIPROTEC 5 6MD86 (CPU variant CP300)

Remediation

Refer to Siemens Website for patch, upgrade or suggested workaround information.

Siemens Website

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

Rewterz Threat Update – Southeast Asian Banking Apps Targeted By New FjordPhantom Android Malware

Rewterz Threat Alert – A New Gh0st RAT Malware Variant Targets South Korea and Uzbekistan – Active IOCs

Rewterz Threat Advisory – Multiple GitLab Community and Enterprise Edition Vulnerabilities

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

Rewterz Threat Update – Southeast Asian Banking Apps Targeted By New FjordPhantom Android Malware

Rewterz Threat Alert – A New Gh0st RAT Malware Variant Targets South Korea and Uzbekistan – Active IOCs

Rewterz Threat Advisory – Multiple GitLab Community and Enterprise Edition Vulnerabilities

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Rewterz Threat Advisory – Multiple VMware vRealize Operations (vROps) Vulnerabilities

Rewterz Threat Advisory – ICS: Siemens APOGEE PXC Series and Siemens TALON TC Series Vulnerability