Rewterz Threat Alert – Cerberus Banking Trojan – Active IOCs

September 7, 2021

Rewterz Threat Advisory – ICS : Hitachi ABB Power Grids System Data Manager

September 8, 2021

Rewterz Threat Advisory – Microsoft MSHTML Remote Code Execution Vulnerability

September 7, 2021

Severity

High

Analysis Summary

CVE-2021-40444

An attacker could craft a malicious ActiveX control to be used by a Microsoft Office document that hosts the browser rendering engine. The attacker would then have to convince the user to open the malicious document. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

Impact

Remote Code Execution

Affected Vendors

Microsoft

Affected Products

MSHTML

Remediation

Microsoft is yet to release a patch for the vulnerability however, Disabling the installation of all ActiveX controls in Internet Explorer mitigates this attack.

More details can be found at:

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-40444

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

GitHub Tools Deployed in CrazyHunter Ransomware Campaigns – Active IOCs

North Korean APT Kimsuky aka Black Banshee – Active IOCs

Sophisticated BPFDoor Malware Detected Targeting Linux Systems – Active IOCs

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Rewterz Threat Alert – Cerberus Banking Trojan – Active IOCs

Rewterz Threat Advisory – ICS : Hitachi ABB Power Grids System Data Manager

The Wait Is Over!

The Rewterz Annual Threat Intelligence Report 2024 is finally here.