Gafgyt aka Bashlite Malware – Active IOCs

October 16, 2024

CVE-2024-28987 – SolarWinds Web Help Desk Vulnerability

October 16, 2024

CVE-2024-9680 – Mozilla Firefox Vulnerability Exploit in the Wild

October 16, 2024

Severity

High

Analysis Summary

CVE-2024-9680

An attacker was able to achieve code execution in the content process by exploiting a use-after-free in Animation timelines. We have had reports of this vulnerability being exploited in the wild. This vulnerability affects Firefox < 131.0.2, Firefox ESR < 128.3.1, and Firefox ESR < 115.16.1.

Impact

Code Execution

Indicators of Compromise

CVE

CVE-2024-9680

Affected Vendors

Mozilla

Affected Products

Mozilla Firefox
Mozilla Firefox ESR

Remediation

Refer to Mozilla Firefox Security Advisory for patch, upgrade, or suggested workaround information.

Mozilla Firefox Security Advisory

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

Python RAT Uses Discord Interface to Execute Remote Attacks

Critical Alert: Jordanian Banks Under Siege by Everest Ransomware Group

The SocGholish-RansomHub Connection – Active IOCs

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Gafgyt aka Bashlite Malware – Active IOCs

CVE-2024-28987 – SolarWinds Web Help Desk Vulnerability

Severity

High

Analysis Summary

Indicators of Compromise

CVE

Affected Vendors

Affected Products

Remediation

The Wait Is Over!

The Rewterz Annual Threat Intelligence Report 2024 is finally here.