Threat Advisories

Budworm Attackers Return with New Espionage Strikes Against the United States

October 18, 2022

Threat Level

Red

Actor Report

For a detailed threat advisory, download the pdf file here

Summary

The Budworm espionage group exploited Log4j vulnerabilities to jeopardize the Apache Tomcat service by integrating several custom and publicly available tools to exfiltrate sensitive information.

Security flaws in multiple Adobe products

WIP19 targets IT service providers and telcos with custom malware