Threat Advisory
May 17, 2022
Severity Medium Analysis Summary Anonymous, a hacktivist and activist collective, has declared their support for Ukraine in this ongoing cyberwar. The group recently claimed to have […]
May 17, 2022
Severity Low Analysis Summary CVE-2022-22393 IBM WebSphere Application Server Liberty 17.0.0.3 through 22.0.0.5 , with the adminCenter-1.0 feature configured, could allow an authenticated user to issue […]
May 17, 2022
Severity Medium Analysis Summary CVE-2022-22325 IBM MQ (IBM MQ for HPE NonStop 8.1.0) can inadvertently disclose sensitive information under certain circumstances to a local user from […]
May 17, 2022
Severity High Analysis Summary CVE-2022-30138 Microsoft Windows Print Spooler could allow a local authenticated attacker to gain elevated privileges on the system, caused by a flaw […]
May 17, 2022
Severity High Analysis Summary APT-17 group aka BITTER APT group has been recently active and targeting sectors in South Asia for information theft and espionage. This […]
May 17, 2022
Severity Medium Analysis Summary CVE-2022-1701 CVSS:5.7 SonicWall SMA1000 series could allow a local authenticated attacker to obtain sensitive information, caused by the use of a shared […]
May 16, 2022
Severity High Analysis Summary Molerats APT – also known as Moonlight, Extreme Jackal, and Gaza Hackers Team – have been active since 2012. They made headlines […]
May 16, 2022
Severity High Analysis Summary The crypter being used reuses the code from the ransomware itself. According to the security Researchers, the crypter is a modified form […]
May 16, 2022
Severity Medium Analysis Summary W32/Shodi-F – a virus targeting Windows platform – seeks to infect all files with the EXE extension, except for specific Windows system […]
May 16, 2022
Severity Medium Analysis Summary Redline is an info stealer malware that steals information from web browsers and has the ability to corrupt operating systems by installing […]
May 16, 2022
Severity Medium Analysis Summary AveMaria RAT is a remote access trojan that targets Windows systems that provides the capability to gain unauthorized access to a victim’s […]
May 16, 2022
Severity High Analysis Summary APT36, just like many other threat actors, is capitalizing on fear, compromising victims with scams or malware campaigns. APT36 is using a […]
May 16, 2022
Severity High Analysis Summary Gamaredon is a Russia-backed advanced persistent threat (APT) that has been operating since at least 2013. The main goal of this APT […]
May 16, 2022
Severity High Analysis Summary Kimsuky is a North Korean nation-state actor that has been active since 2012. It primarily targets South Korean government agencies and conducts […]
May 16, 2022
Severity Medium Analysis Summary CVE-2022-21151 Intel Processors could allow a local authenticated attacker to obtain sensitive information, caused by the processor optimization removal or modification of […]
May 16, 2022
Severity Low Analysis Summary CVE-2022-21136 CVSS:3.3 Intel Xeon Processors are vulnerable to a denial of service, caused by improper input validation. By sending a specially-crafted request, […]
May 16, 2022
Severity Medium Analysis Summary CVE-2022-0005 Intel Software Guard Extensions (SGX) Platform could allow a local authenticated attacker to obtain sensitive information, caused by an unspecified flaw. […]
May 16, 2022
Severity Medium Analysis Summary CVE-2022-22970 CVSS:6.5 Vmware Tanzu Spring Framework is vulnerable to a denial of service, caused by a flaw in the handling of file […]
May 16, 2022
Rewterz Threat Alert – Massive Hacking Campaign Compromised Several WordPress Websites – Active IOCs
Severity High Analysis Summary Researchers discovered a massive campaign that infected thousands of WordPress websites with malicious JavaScript code that redirected users to scam content. To […]
May 16, 2022
Severity High Analysis Summary CVE-2022-24422 Dell EMC iDRAC9 could allow a remote attacker to bypass security restrictions, caused by improper authentication. By sending a specially crafted […]
May 16, 2022
Severity High Analysis Summary CVE-2022-30523 Trend Micro Password Manager could allow a local authenticated attacker to gain elevated privileges on the system, caused by a link […]
May 13, 2022
Severity High Analysis Summary A new Mirai variant is making the rounds called mirai_pteamirai. The botnet exploits a vulnerability in KGUARD DVR to spread within an […]
May 13, 2022
Severity High Analysis Summary QBot, often known as QakBot, is modular information malware. It has been operational since 2007. This banking Trojan, QakBot steals financial data […]
May 13, 2022
Severity Medium Analysis Summary W32/Shodi-F – a virus targeting Windows platform – seeks to infect all files with the EXE extension, except for specific Windows system […]