Rewterz Threat Alert – SNAKE Ransomware – Active IOCs
July 15, 2021Rewterz Threat Alert – Lokibot Malware – Active IOCs
July 15, 2021Rewterz Threat Alert – SNAKE Ransomware – Active IOCs
July 15, 2021Rewterz Threat Alert – Lokibot Malware – Active IOCs
July 15, 2021Severity
High
Analysis Summary
Google’s Threat Analysis Group (TAG) released updates on the four 0-days that are being exploited by threat actors in the wild.
- CVE-2021-1879 in WebKit (Safari).
- CVE-2021-33742 in Internet Explorer, and
- CVE-2021-21166 and CVE-2021-30551 in Chrome,
Three of the four exploits were developed by the same organization and were sold to government-backed actors. CVE-2021-21166 and CVE-2021-30551 in Chrome were delivered via emails as one-time links. Once the victim clicked on the link, they were redirected to a page that infected their systems and collected information from the system.
Impact
- Information Disclosure
- Unauthorized Access
- Code Execution
- Privilege Escalation
Remediation
For more information on Patches, updates, and remediation techniques visit the Rewterz advisories at https://www.rewterz.com/threat-advisory