Rewterz

Rewterz Threat Alert – APT27 ZxShell RootKit – IOC’s

January 14, 2020
Rewterz

Rewterz Threat Advisory – CVE-2019-13933 – ICS: Advisory on Siemens SCALANCE X Switches

January 15, 2020

Rewterz threat Advisory – CVE-2019-10940 – ICS: Siemens SINEMA Server Incorrect privilege assessment

Severity

High

Analysis Summary

Incorrect session validation could allow an attacker with a valid session, with low privileges, to perform firmware updates and other administrative operations on connected devices.

Impact

Incorrect Privilege Assignment

Affected Vendors

Siemens

Affected Products

All versions prior to Version 14.0 SP2 Update 1

Remediation

Siemens recommends users to upgrade to version.

Version 14.0 SP2 Update 1

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.