Attacks, Vulnerabilities and Actors 12 to 18 February 2024

For a detailed threat digest, download the pdf file here

Summary

HiveForce Labs recently made several significant discoveries in the realm of cybersecurity threats. In the past week alone, a total of eight attacks were executed, five vulnerabilities were uncovered, and three active adversaries were identified. These findings underscore the persistent danger of cyberattacks.

Furthermore, HiveForce Labs revealed two zero-day exploited vulnerabilities that have been addressed as part of February 2024 patch Tuesday. One of these vulnerabilities (CVE-2024-21412) was exploited by Water Hydra APT group, to bypass Microsoft Defender SmartScreen, targeting financial traders with DarkMe malware through sophisticated spearphishing tactics.

The Coyote, a new banking trojan is currently targeting more than 60 banking institutions, primarily in Brazil. Volt Typhoon is actively targeting critical infrastructure in the United States and African countries, employing sophisticated tactics. These attacks are on the rise, posing a significant threat to users worldwide.

Subscribe to receive our weekly threat digests and newsletters directly in your inbox.