Rewterz Threat Alert – Cerberus Banking Trojan – Active IOCs

August 24, 2021

Rewterz Threat Advisory – ICS – Delta Electronics TPEditor Vulnerability

August 25, 2021

Rewterz Threat Advisory – CVE-2021-33191 – Apache NiFi MiNiFi C++ Vulnerability

August 25, 2021

Severity

High

Analysis Summary

CVE-2021-33191

Apache NiFi MiNiFi C++ could allow a remote attacker to execute arbitrary commands on the system, caused by improper input validation by the agent-update command. By sending a specially-crafted c2-update command with a modified value, an attacker could exploit this vulnerability to execute arbitrary commands on the system with the privileges of the application binary.

Impact

Unauthorized Access

Affected Vendors

Apache

Affected Products

Apache NiFi MiNiFi C++ 0.5.0

Remediation

Upgrade to the latest version of Apache, available from the Apache Web site.

https://nifi.apache.org/minifi/download.html

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

GitHub Tools Deployed in CrazyHunter Ransomware Campaigns – Active IOCs

North Korean APT Kimsuky aka Black Banshee – Active IOCs

Sophisticated BPFDoor Malware Detected Targeting Linux Systems – Active IOCs

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Rewterz Threat Alert – Cerberus Banking Trojan – Active IOCs

Rewterz Threat Advisory – ICS – Delta Electronics TPEditor Vulnerability

The Wait Is Over!

The Rewterz Annual Threat Intelligence Report 2024 is finally here.