Attacks, Vulnerabilities and Actors 19 to 25 February 2024

For a detailed threat digest, download the pdf file here

Summary

HiveForce Labs recently made several significant discoveries in the realm of cybersecurity threats. In the past week alone, a total of fifteen attacks were executed, five vulnerabilities were uncovered, and five active adversaries were identified. These findings underscore the persistent danger of cyberattacks.

Furthermore, HiveForce Labs uncovered Chinese threat entity as Earth Preta, targeting numerous Asian countries by employing a customized version of the PlugX backdoor known as DOPLUGS.

Meanwhile, critical vulnerabilities in ScreenConnect CVE-2024-1709 and CVE-2024-1708, allow attackers unauthorized access without credentials, and enables remote code execution respectively. Over 8200 vulnerable instances are identified and observed 643 IPs exploiting CVE-2024-1709.

Subscribe to receive our weekly threat digests and newsletters directly in your inbox.