North Korean Attackers Use Advanced Phishing Techniques to Target Brazilian Fintech – Active IOCs

June 21, 2024

CVE-2024-34693 – Apache Superset Vulnerability

June 21, 2024

CVE-2024-36886 – Linux Kernel Zero-Day Vulnerability

June 21, 2024

Severity

Medium

Analysis Summary

CVE-2024-36886

Linux Kernel could allow a remote attacker to execute arbitrary code on the system, caused by a use-after-free when processing fragmented TIPC messages. By sending a specially crafted request, an attacker could exploit this vulnerability to execute code in the context of the kernel.

Impact

Code Execution

Indicators of Compromise

CVE

CVE-2024-36886

Affected Vendors

Linux

Affected Products

Linux Kernel 4.1

Remediation

Refer to Linux Kernel GIT Repository for patch, upgrade or suggested workaround information.

Linux Kernel GIT Repository

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

Python RAT Uses Discord Interface to Execute Remote Attacks

Critical Alert: Jordanian Banks Under Siege by Everest Ransomware Group

The SocGholish-RansomHub Connection – Active IOCs

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

North Korean Attackers Use Advanced Phishing Techniques to Target Brazilian Fintech – Active IOCs

CVE-2024-34693 – Apache Superset Vulnerability

Severity

Medium

Analysis Summary

Indicators of Compromise

CVE

Affected Vendors

Affected Products

Remediation

The Wait Is Over!

The Rewterz Annual Threat Intelligence Report 2024 is finally here.