Attacks, Vulnerabilities and Actors 18 to 24 March 2024

For a detailed threat digest, download the pdf file here

Summary

HiveForce Labs recently made several significant discoveries in the realm of cybersecurity threats. In the past week alone, a total of fifteen attacks were executed, eight vulnerabilities were uncovered, and five active adversaries were identified. These findings underscore the persistent danger of cyberattacks.

Furthermore, HiveForce Labs uncovered a cybercriminal group ShadowSyndicate, aiming to exploit Aiohttp library vulnerability CVE-2024-23334 to access sensitive data on servers globally.

Meanwhile, critical vulnerabilities in JetBrains TeamCity (CVE-2024-27198, CVE-2024-27199), allow attackers to disseminate various malwares such as Jasmin ransomware, XMRig cryptominers, SparkRAT backdoor, and remote access trojans (RATs). Since the emergence of proof-of-concept (PoC) code for both vulnerabilities, multiple threat actors have been identified exploiting them in their malicious activities.

Subscribe to receive our weekly threat digests and newsletters directly in your inbox.