Actors, Threats and Vulnerabilities 13 March to 19 March 2023

Threat Digests

Actors, Threats and Vulnerabilities 13 March to 19 March 2023

For a detailed threat digest, download the pdf file here

Summary

For a detailed threat digest, download the pdf file here

Over the past week, Hive Pro detected the presence of five active threat actors. The first of these is Dark Pink APT, a notorious group with a history of engaging in information theft and espionage. The second actor is Tick APT, a Chinese cybercrime organization that primarily focuses on information theft and espionage. The third actor identified is APT29, while the fourth is YoroTrooper. The fifth actor is the BianLian ransomware group. For more information, please refer to the key takeaway section on Threat Actors.

Over the past week, a total of fourteen new strains of active malware were detected.  Among them were two ransomware variants, namely, IceFire Ransomware and BianLian Ransomware. In addition, two Remote Access Trojans (RATs) were also discovered, namely WarzoneRAT and LodaRAT. Furthermore, a new type of malware known as KamiKakaBot Malware was also identified, along with nine other types of malware. For more information, please refer to the key takeaway section on Attacks.

Last week, we identified 35 vulnerabilities that organizations should be aware of. Among these, three were found in Adobe ColdFusion, while Google Chrome resolved twenty vulnerabilities. Furthermore, Microsoft addressed a total of 83 vulnerabilities in its Tuesday patch, with ten of them particularly noteworthy. For more information, please refer to the key takeaway section on vulnerabilities.