Rewterz Threat Alert – Eternity Project – Malware Being Sold Via Telegram – Active IOCs

May 23, 2022

Rewterz Threat Alert – Sugar Ransomware – Active IOCs

May 23, 2022

Rewterz Threat Advisory – CVE-2022-20821 – Cisco IOS XR Vulnerability

May 23, 2022

Severity

Medium

Analysis Summary

CVE-2022-20821

Cisco IOS XR could allow a remote attacker to bypass security restrictions, caused by an issue the health check RPM opening TCP port 6379 by default upon activation. By connecting to the Redis instance on the open port, an attacker could exploit this vulnerability to write to the Redis in-memory database, write arbitrary files to the container filesystem, and retrieve information about the Redis database.

Impact

Security Bypass

Indicators Of Compromise

CVE

CVE-2022-20821

Affected Vendors

Cisco

Affected Products

Cisco IOS XR 7.3.3

Remediation

Refer to Cisco Security Advisory for patch, upgrade or suggested workaround information.

Cisco Security Advisory

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

Python RAT Uses Discord Interface to Execute Remote Attacks

Critical Alert: Jordanian Banks Under Siege by Everest Ransomware Group

The SocGholish-RansomHub Connection – Active IOCs

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Rewterz Threat Alert – Eternity Project – Malware Being Sold Via Telegram – Active IOCs

Rewterz Threat Alert – Sugar Ransomware – Active IOCs

The Wait Is Over!

The Rewterz Annual Threat Intelligence Report 2024 is finally here.