Rewterz

Rewterz Threat Alert- Geost Android Banking Botnet Targeting Russians

October 8, 2019
Rewterz

Rewterz Threat Advisory – GE Mark VIe Controller Multiple Vulnerabilities

October 9, 2019

Rewterz Threat Advisory – CVE-2019-13529 – SMA Solar Technology AG Sunny WebBox Cross-site Request Forgery Vulnerability

Severity

High

Analysis Summary

An attacker could send a malicious link to an authenticated operator, which may allow remote attackers to perform actions with the permissions of the user. This device uses IP addresses to maintain communication after a successful login, which would increase the ease of exploitation.

Impact

Cross-Site Request Forgery

Affected Vendors

SMA Solar Technology AG

Affected Products

Sunny WebBox Firmware Version 1.6 and prior

Remediation

This product is end-of-life and is no longer supported.
SMA recommends deactivation of port forwarding as it is not required for monitoring PV systems via the SMA Sunny Portal. If direct access to a system from the Internet is necessary, SMA recommends using an encrypted virtual private network (VPN). On delivery, any saved default passwords should also be replaced with individual secure passwords, and unused ports on the system/router should be closed.

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.