SideWinder APT Group aka Rattlesnake – Active IOCs

May 14, 2025

CVE-2025-1695 – F5 NGINIX Vulnerability

May 14, 2025

ICS: Schneider Electric Modicon Controllers Vulnerability

May 14, 2025

Severity

High

Analysis Summary

CVE-2025-2875

Externally Controlled Reference to a Resource in Another Sphere vulnerability exists that could cause a loss of confidentiality when an unauthenticated attacker manipulates the controller’s webserver URL to access resources.

Impact

Gain Access

Indicators of Compromise

CVE

CVE-2025-2875

Affected Vendors

Schneider Electric

Affected Products

Schneider Modicon Controllers M241/M251 - v5.3.12.48

Remediation

Refer to Schneider Electric Security Advisory for patch, upgrade, or suggested workaround information.

Schneider Electric Security Advisory

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

Local Privilege Escalation to Root via Sudo chroot in Linux

CoinMiner Malware – Active IOCs

Google Warns of Active Exploits Targeting Chrome V8 Vulnerability

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

SideWinder APT Group aka Rattlesnake – Active IOCs

CVE-2025-1695 – F5 NGINIX Vulnerability

Severity

High

Analysis Summary

Indicators of Compromise

CVE

Affected Vendors

Affected Products

Remediation