Actors, Threats and Vulnerabilities 24 to 30 April 2023

For a detailed threat digest, download the pdf file here

Summary

HiveForce Labs recently made several significant discoveries related to cybersecurity threats. Over the past week, they identified a total of eight attacks that were executed. These attacks were taking advantage of three different vulnerabilities in various systems. Additionally, HiveForce Labs identified six different adversaries that were actively carrying out these attacks.

Interestingly, all the three vulnerabilities are part of the known exploited vulnerability catalog by CISA. 

Moreover, HiveForce Labs also found that APT28  was exploiting a five-year-old vulnerability by deploying  Jaguar Tooth.

Furthermore, they identified new Linux malware variants of the famous PingPull  as well as a new macOS malware RustBucket surfaced online.

Apart from these threats, there was also a new ransomware strain named CrossLock. Charming Kitten was observed using a malware BellaCiao which is based on an Italian song. All these attacks were observed to be on the rise, posing a significant threat to users all over the world.

For a detailed threat digest, download the pdf file here