Rewterz

Rewterz Threat Alert – Recent Lazarus activity – IOC’s

October 29, 2019
Rewterz

Rewterz Threat Alert – How TrickBot is Injected into Browsers

October 30, 2019

Rewterz Threat Advisory – CVE-2019-16675 – ICS: PHOENIX CONTACT Automation Worx Software Suite

Severity

Medium

Analysis Summary

A manipulated PC Worx or Config+ project file could lead to arbitrary code execution due to insufficient input data validation.

Impact

Improper Input Validation

Affected Vendors

Phoenix Contact

Affected Products

  • PC Worx Versions 1.86 and prior
  • PC Worx Express Versions 1.86 and prior
  • Config+ Versions 1.86 and prior

Remediation

Phoenix Contact strongly recommends users exchange project files using only secure file exchange services, and that project files should not be exchanged via unencrypted email.

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.