Actors, Threats and Vulnerabilities 20 March to 26 March 2023

For a detailed threat digest, download the pdf file here

Summary

For a detailed threat digest, download the pdf file here

HiveForce Labs recently made several significant discoveries related to cybersecurity threats. Over the past week, they identified a total of 19 attacks that were executed. These attacks were taking advantage of nine different vulnerabilities in various systems. Additionally, HiveForce Labs identified five different adversaries that were actively carrying out these attacks.

Interestingly, two of the vulnerabilities that were being exploited had not yet been patched. These two vulnerabilities were being targeted by the Hinatabot Go-based botnet.

Moreover, HiveForce Labs also found that UNC961 (Prophet spider) was exploiting a group of six old vulnerabilities to carry out attacks. Furthermore, they identified two new actors called Bad Magic and Winter Vivern that were involved in recent attacks.

Apart from these threats, there was also an increase in the number of macOS malware attacks over the past week. These attacks included CloudMensis, DazzleSpy, EggShell, KeySteal, Poseidon, Pureland, Xloader, and Zuru. All these attacks were observed to be on the rise, posing a significant threat to users of macOS systems.