Threat Advisory

September 20, 2021

Rewterz Threat Alert – WannaCry Ransomware – Active IOCs

Severity High Analysis Summary WannaCry is also called WCry or WanaCrptor ransomware malware, this ransomware can encrypt all your data files and demands a payment to […]
September 20, 2021

Rewterz Threat Advisory – ICS : Siemens RUGGEDCOM ROX

Severity High Analysis Summary CVE-2021-37173 The affected devices have an exposure of sensitive information vulnerability that could allow an authenticated attacker to extract data via Secure […]
September 20, 2021

Rewterz Threat Advisory – ICS : Schneider Electric EcoStruxure and SCADAPack

Severity High Analysis Summary CVE-2021-22796 When a malicious project file is loaded on the engineering workstation software, it deploys a malicious script to execute arbitrary code […]
September 19, 2021

Rewterz Threat Alert – RedLine Malware – Active IOCs

Severity High Analysis Summary Redline the data burglar of users’ confidential information from web browsers and by installing malicious software this redline stealer can harm the […]
September 19, 2021

Rewterz Threat Advisory – CVE-2021-23442 – Node.js @cookiex/deep module Vulnerability

Severity High Analysis Summary CVE-2021-23442 Node.js @cookiex/deep module could allow a remote attacker to execute arbitrary code on the system, caused by a prototype pollution flaw […]
September 19, 2021

Rewterz Threat Advisory – Multiple Apache Jena and HTTP Server Vulnerabilities

Severity Medium Analysis Summary CVE-2021-40690 Apache Santuario XML Security for Java could allow a remote attacker to bypass security restrictions, caused by the improper passing of […]
September 17, 2021

Rewterz Threat Alert – FormBook Malware – Active IOCs

Severity Medium Analysis Summary FormBook is an information-stealer malware that has been active since 2016. The info-stealer malware’s capabilities include stealing credentials, capturing screenshots of victim’s […]
September 17, 2021

Rewterz Threat Alert – APT MustangPanda – Active IOCs

Severity High Analysis Summary Researchers have identified recent Mustang Panda activity that involves the use of DLL side-loading to deliver PlugX. The initial infection vector is […]
September 17, 2021

Rewterz Threat Alert – Bitter APT Group – Active IOCs

Severity High Analysis Summary APT-17 group aka BITTER APT group has been recently active and targeting sectors in South Asia for information theft and espionage. This […]
September 17, 2021

Rewterz Threat Advisory – Multiple Apache Jena and HTTP Server Vulnerabilities

Severity Medium Analysis Summary CVE-2021-39239 Apache Jena could allow a remote attacker to obtain sensitive information, caused by improper handling of XML external entity (XXE) declarations. […]
September 17, 2021

Rewterz Threat Alert – Oski Data Stealer Malware – Active IOCs

Severity High Analysis Summary An emergent and effective data-harvesting tool dubbed Oski is proliferating in North America and China, stealing online account credentials, credit card numbers, […]
September 17, 2021

Rewterz Threat Alert – Agent Tesla Malware – Active IOCs

Severity Medium Analysis Summary A new AgentTesla campaign is seen targeting victims with malspam. AgentTesla is known for stealing data from different applications on victim machines, […]
September 17, 2021

Rewterz Threat Alert – SNAKE Ransomware – Active IOCs

Severity High Analysis Summary SNAKE ransomware is targeting networks and aiming to encrypt all of the devices connected to them. The ransomware contains a level of […]
September 17, 2021

Rewterz Threat Alert – RedLine Malware – Active IOCs

Severity High Analysis Summary Redline the data burglar of users’ confidential information from web browsers and by installing malicious software this redline stealer can harm the […]
September 16, 2021

Rewterz Threat Advisory – CVE-2021-41079 – Apache Tomcat Vulnerability

Severity High Analysis Summary CVE-2021-41079 Apache Tomcat is vulnerable to a denial of service, caused by improper input validation of TLS packets. By sending a specially-crafted […]
September 16, 2021

Rewterz Threat Advisory – Multiple Linux Kernel Security Vulnerabilities

Severity High Analysis Summary CVE-2021-38300 Linux Kernel could allow a locally authenticated attacker to gain elevated privileges on the system, caused by an incorrect branches issue […]
September 16, 2021

Rewterz Threat Advisory – ICS : Multiple Siemens Vulnerabilities

Severity High Analysis Summary CVE-2021-25665 Siemens Simcenter STAR-CCM+ Viewer could allow a remote attacker to execute arbitrary code on the system, caused by an out-of-bounds write […]
September 16, 2021

Rewterz Threat Advisory – Multiple Adobe Vulnerabilities

Severity High Analysis Summary CVE-2021-40714 ; CVE-2021-40711 Adobe Experience Manager (AEM) is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker […]
September 16, 2021

Rewterz Threat Alert – ZLoader Banking Trojan – Active IOCs

Severity High Analysis Summary A huge wave of ZLoader samples has been observed in the past 24 hours. ZLoader is also known as Terdot, DELoader, that […]
September 16, 2021

Rewterz Threat Advisory – CVE-2021-30862 – Apple iTunes U Vulnerability

Severity Medium Analysis Summary CVE-2021-30862 Apple iTunes U is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the password workspace page. A […]
September 16, 2021

Rewterz Threat Advisory – CVE-2021-34720 – Cisco IOS Software Security Vulnerability

Severity High Analysis Summary CVE-2021-34720 A vulnerability in the IP Service Level Agreements (IP SLA) responder and Two-Way Active Measurement Protocol (TWAMP) features of Cisco IOS […]
September 15, 2021

Rewterz Threat Alert – Magecart Group – Active IOCs

Severity High Analysis Summary Megacart is also known as CoffeMokko, keeper, and FBseo this group is the oldest and dangerous threat actors in cybersecurity. In the […]
September 15, 2021

Rewterz Threat Alert – Donot APT Group – Active IOCs

Severity High Analysis Summary Donot APT group has been actively dropping malicious samples and targeting android users to exfiltrate data. The group has previously been active […]
September 15, 2021

Rewterz Threat Advisory – ICS: Schneider Electric Multiple Security Vulnerabilities

Severity High Analysis Summary CVE-2021-22794 Schneider Electric StruxureWare Data Center Expert could allow a remote authenticated attacker to execute arbitrary code on the system, caused by […]

Talk with an Expert

Provide your details to speak with a security expert.
Request a meeting