Rewterz

Rewterz Threat Advisory – Apache NiFi code execution

December 1, 2020
Rewterz

Rewterz Threat Alert – MacOS users Targeted by OceanLotus Malware

December 1, 2020

Rewterz Threat Alert – Microsoft Outlook Web Phishing

Severity

Medium

Analysis Summary

Threat actors are actively dropping phishing emails impersonating Microsoft Outlook app and robbing off credentials of the users with their tactics. This has been the latest ongoing phishing campaign actively targeting multiple organizations at the same time. Threat actors are asking for username password and email address in their redirected page and asking for credentials of the target victims. 

Image

Impact

  • Credential theft
  • Exposure of sensitive data

Indicators of Compromise

URL

  • hxxps[:]//staffbenefitsforall[.]weebly[.]com

Remediation

  • Block all threat indicators at your respective controls.
  • Search for IOCs in your environment.

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.