April 19, 2024
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Rewterz Threat Alert – MenuPass QuasarRAT Backdoor – APT10 – Aiming for Unauthorized System Access
June 20, 2019Rewterz Threat Advisory – CVE-2019-1905 – Cisco Email Security Appliance AsyncOS GZIP Content Filter Security Bypass Vulnerability
June 20, 2019Rewterz Threat Alert – MenuPass QuasarRAT Backdoor – APT10 – Aiming for Unauthorized System Access
June 20, 2019Rewterz Threat Advisory – CVE-2019-1905 – Cisco Email Security Appliance AsyncOS GZIP Content Filter Security Bypass Vulnerability
June 20, 2019
Severity
Medium
Analysis Summary
An email that tricks user to click on the malicious links and attachments imitating as Department of Homeland Security (DHS) notifications. This email campaign is using a spoofed email address to appear like (National Cyber Awareness System) NCAS alert and luring targeted users to download malware through the malicious attachment.
Remediation
- Be wary of the unsolicited emails.
- Always verify the web addresses independently even if the sender appears to be known.
- Report unsolicited emails to your information technology department help desk or email provider.