Rewterz Threat Advisory –CVE-2021-24522 – WordPress Cross Site Scripting Vulnerability

August 10, 2021

Rewterz Threat Advisory –CVE-2021-21601 – Dell EMC Data Protection Security Vulnerability

August 10, 2021

Rewterz Threat Alert –Sodinokibi Ransomware – Active IOCs

August 10, 2021

Severity

Medium

Analysis Summary

Sodinokibi ransomware usually targets victims, infecting systems via Microsoft Office documents. After encryption, a ransom note is found on infected systems. The ransomware usually demands a ransom of $850k or $1.7m for decrypting the files on the target system. The ransomware has re-emerged in cyberspace after a few months, earlier campaigns dating back to July and August, 2020. Recently, few samples of Sodinokibi were found being distributed.

Impact

Files encryption
Information theft

Indicators of Compromise

MD5

1ce1ca85bff4517a1ef7e8f9a7c22b16

SHA-256

06b323e0b626dc4f051596a39f52c46b35f88ea6f85a56de0fd76ec73c7f3851

SHA-1

f35f0cd23692e5f5d0a3be7aefc8b01dfdd4e614

Remediation

Block the threat indicators at their respective controls.
Do not download software from random sources on the internet.

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

SideWinder APT Group aka Rattlesnake – Active IOCs

Microsoft Bookings Vulnerability Allowed Attackers to Modify Meeting Details

ClickFix Scheme Used by Russian Hackers to Deploy Espionage Malware – Active IOCs

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Rewterz Threat Advisory –CVE-2021-24522 – WordPress Cross Site Scripting Vulnerability

Rewterz Threat Advisory –CVE-2021-21601 – Dell EMC Data Protection Security Vulnerability

The Wait Is Over!

The Rewterz Annual Threat Intelligence Report 2024 is finally here.