Threat Advisory

May 17, 2022

Rewterz Threat Update – Anonymous Collective Continues To Breach Russian Organizations – Russian-Ukrainian Cyber Warfare

Severity Medium Analysis Summary Anonymous, a hacktivist and activist collective, has declared their support for Ukraine in this ongoing cyberwar. The group recently claimed to have […]
May 17, 2022

Rewterz Threat Advisory – CVE-2022-22393 – IBM WebSphere Application Server Liberty Vulnerability

Severity Low Analysis Summary CVE-2022-22393 IBM WebSphere Application Server Liberty 17.0.0.3 through 22.0.0.5 , with the adminCenter-1.0 feature configured, could allow an authenticated user to issue […]
May 17, 2022

Rewterz Threat Advisory – CVE-2022-22325 – IBM MQ Vulnerability

Severity Medium Analysis Summary CVE-2022-22325 IBM MQ (IBM MQ for HPE NonStop 8.1.0) can inadvertently disclose sensitive information under certain circumstances to a local user from […]
May 17, 2022

Rewterz Threat Advisory – CVE-2022-30138 – Microsoft Windows Print Spooler Vulnerability

Severity High Analysis Summary CVE-2022-30138 Microsoft Windows Print Spooler could allow a local authenticated attacker to gain elevated privileges on the system, caused by a flaw […]
May 17, 2022

Rewterz Threat Alert – Bitter APT Group – Active IOCs

Severity High Analysis Summary APT-17 group aka BITTER APT group has been recently active and targeting sectors in South Asia for information theft and espionage. This […]
May 17, 2022

Rewterz Threat Advisory – Multiple SonicWall SMA1000 series Vulnerabilities

Severity Medium Analysis Summary CVE-2022-1701 CVSS:5.7 SonicWall SMA1000 series could allow a local authenticated attacker to obtain sensitive information, caused by the use of a shared […]
May 16, 2022

Rewterz Threat Alert – Molerats APT Group – Active IOCs

Severity High Analysis Summary Molerats APT – also known as Moonlight, Extreme Jackal, and Gaza Hackers Team – have been active since 2012. They made headlines […]
May 16, 2022

Rewterz Threat Alert – Sugar Ransomware – Active IOCs

Severity High Analysis Summary The crypter being used reuses the code from the ransomware itself. According to the security Researchers, the crypter is a modified form […]
May 16, 2022

Rewterz Threat Alert – Shodi Malware – Active IOCs

Severity Medium Analysis Summary W32/Shodi-F – a virus targeting Windows platform – seeks to infect all files with the EXE extension, except for specific Windows system […]
May 16, 2022

Rewterz Threat Alert – RedLine Stealer – Active IOCs

Severity Medium Analysis Summary Redline is an info stealer malware that steals information from web browsers and has the ability to corrupt operating systems by installing […]
May 16, 2022

Rewterz Threat Alert – AveMaria RAT – Active IOCs

Severity Medium Analysis Summary AveMaria RAT is a remote access trojan that targets Windows systems that provides the capability to gain unauthorized access to a victim’s […]
May 16, 2022

Rewterz Threat Alert – APT36 Crimson RAT – Active IOCs

Severity High Analysis Summary APT36, just like many other threat actors, is capitalizing on fear, compromising victims with scams or malware campaigns. APT36 is using a […]
May 16, 2022

Rewterz Threat Alert – APT Group Gamaredon – Active IOCs

Severity High Analysis Summary Gamaredon is a Russia-backed advanced persistent threat (APT) that has been operating since at least 2013. The main goal of this APT […]
May 16, 2022

Rewterz Threat Alert – Kimsuky APT Group – Active IOCs

Severity High Analysis Summary Kimsuky is a North Korean nation-state actor that has been active since 2012. It primarily targets South Korean government agencies and conducts […]
May 16, 2022

Rewterz Threat Advisory – CVE-2022-21151 – Intel Processors Vulnerability

Severity Medium Analysis Summary CVE-2022-21151  Intel Processors could allow a local authenticated attacker to obtain sensitive information, caused by the processor optimization removal or modification of […]
May 16, 2022

Rewterz Threat Advisory – Multiple Intel Xeon Processors Vulnerabilities

Severity Low Analysis Summary CVE-2022-21136 CVSS:3.3 Intel Xeon Processors are vulnerable to a denial of service, caused by improper input validation. By sending a specially-crafted request, […]
May 16, 2022

Rewterz Threat Advisory – CVE-2022-0005 – Intel Software Guard Extensions (SGX) Platform Vulnerability

Severity Medium Analysis Summary CVE-2022-0005  Intel Software Guard Extensions (SGX) Platform could allow a local authenticated attacker to obtain sensitive information, caused by an unspecified flaw. […]
May 16, 2022

Rewterz Threat Advisory – Multiple Vmware Tanzu Spring Framework Vulnerabilities

Severity Medium Analysis Summary CVE-2022-22970 CVSS:6.5 Vmware Tanzu Spring Framework is vulnerable to a denial of service, caused by a flaw in the handling of file […]
May 16, 2022

Rewterz Threat Alert – Massive Hacking Campaign Compromised Several WordPress Websites – Active IOCs

Severity High Analysis Summary Researchers discovered a massive campaign that infected thousands of WordPress websites with malicious JavaScript code that redirected users to scam content. To […]
May 16, 2022

Rewterz Threat Advisory – CVE-2022-24422 – Dell EMC iDRAC9 Vulnerability

Severity High Analysis Summary CVE-2022-24422 Dell EMC iDRAC9 could allow a remote attacker to bypass security restrictions, caused by improper authentication. By sending a specially crafted […]
May 16, 2022

Rewterz Threat Advisory – CVE-2022-30523 – Trend Micro Password Manager Vulnerability

Severity High Analysis Summary CVE-2022-30523  Trend Micro Password Manager could allow a local authenticated attacker to gain elevated privileges on the system, caused by a link […]
May 13, 2022

Rewterz Threat Alert – Mirai Botnet – Active IOCs

Severity High Analysis Summary A new Mirai variant is making the rounds called mirai_pteamirai. The botnet exploits a vulnerability in KGUARD DVR to spread within an […]
May 13, 2022

Rewterz Threat Alert – Qakbot (Qbot) Malware – Active IOCs

Severity High Analysis Summary QBot, often known as QakBot, is modular information malware. It has been operational since 2007. This banking Trojan, QakBot steals financial data […]
May 13, 2022

Rewterz Threat Alert – Shodi Malware – Active IOCs

Severity Medium Analysis Summary W32/Shodi-F – a virus targeting Windows platform – seeks to infect all files with the EXE extension, except for specific Windows system […]

Talk with an Expert

Provide your details to speak with a security expert.
Request a meeting