Actors, Threats and Vulnerabilities 15 to 21 May 2023

For a detailed threat digest, download the pdf file here

Summary

HiveForce Labs recently made significant discoveries in the field of cybersecurity threats. In the past week, they uncovered a total of eight attacks that were executed, taking advantage of five different vulnerabilities across various systems. What’s interesting is that four of these vulnerabilities are zero-day vulnerabilities.

Furthermore, HiveForce Labs identified five different adversaries who were actively carrying out these attacks. In one case, the 8220 gang was found to be exploiting a vulnerability that was six years old in order to deploy cryptominers.

Additionally, a new threat actor called Water Orthrus was observed deploying CopperStealth and CopperPhish. Another newcomer, Lancefly APT, was seen utilizing Merdoor and ZXShell for their attacks.

To add to the list of incidents, a new worm called Xworm was observed exploiting Follina.

For a detailed threat digest, download the pdf file here