Rewterz

Rewterz Threat Alert – STOP aka DJVU Ransomware – Active IOCs

December 11, 2023
Rewterz

Rewterz Threat Alert – An Emerging Ducktail Infostealer – Active IOCs

December 12, 2023

Rewterz Threat Advisory – Multiple Dell PowerEdge Server BIOS Vulnerabilities

Severity

Medium

Analysis Summary

CVE-2023-44297, CVE-2023-44298

Dell PowerEdge platforms 16G Intel E5 BIOS and Dell Precision BIOS could allow a physically proximate attacker to execute arbitrary code on the system, caused by an active debug code security vulnerability. An attacker could exploit this vulnerability to execute arbitrary code on the system, tamper with information, or cause a denial of service.

Impact

  • Code Execution

Indicators Of Compromise

CVE

  • CVE-2023-44297
  • CVE-2023-44298

Affected Vendors

Dell

Affected Products

  • Dell PowerEdge R660 1.4.4
  • Dell PowerEdge R760 1.4.4
  • Dell PowerEdge R860 1.4.4
  • Dell PowerEdge R960 1.4.4
  • Dell PowerEdge T560 1.4.4
  • Dell PowerEdge C6620 1.4.4
  • Dell PowerEdge MX760c 1.4.4
  • Dell PowerEdge HS5610 1.4.4
  • Dell PowerEdge HS5620 1.4.4
  • Dell PowerEdge R660xs 1.4.4
  • Dell PowerEdge R760xs 1.4.4
  • Dell PowerEdge R760xd2 1.4.4
  • Dell PowerEdge R760xa 1.4.4

Remediation

Refer to Dell Security Advisory for patch, upgrade or suggested workaround information.

Dell Security Advisory

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.