Rewterz

Rewterz Threat Alert – Lazarus FastCash Activity – IOC’s

March 7, 2020
Rewterz

Rewterz Threat Alert – Emotet Wi-Fi Spreader Upgraded

March 10, 2020

Rewterz Threat Advisory – CVE-2020-10189 – Zoho Critical Zero-Day Flaw Disclosed

Severity

High

Analysis Summary

This vulnerability allows remote attackers to execute arbitrary code on affected installations of ManageEngine Desktop Central. Authentication is not required to exploit this vulnerability.

Impact

Remote Code Execution

Affected Vendors

Zoho

Affected Products

ManageEngine Desktop Central build 10.0.473 and below

Remediation

Please update to the latest version 10.0.479

Updated patches can be found at

https://www.manageengine.com/products/desktop-central/service-packs.html

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.