Attacks, Vulnerabilities and Actors 5 to 11 February 2024

For a detailed threat digest, download the pdf file here

Summary

HiveForce Labs recently made several significant discoveries in the realm of cybersecurity threats. In the past week alone, a total of five attacks were executed, six vulnerabilities were uncovered, and two active adversaries were identified. These findings underscore the persistent danger of cyberattacks.

Furthermore, HiveForce Labs revealed three zero-day vulnerabilities in Apache, Microsoft Windows SmartScreen, and Fortinet FortiOS SSL-VPN. The entity identified as the UAC-0027 group executed a sophisticated cyber attack against Ukrainian organizations.

The Mispadu info stealer, a malware known for targeting Spanish and Portuguese speakers, specifically targets Mexican regions and leverages the CVE-2023-36025 vulnerability to gain access. Volt Typhoon is actively targeting critical infrastructure in the United States, employing sophisticated tactics. These attacks are on the rise, posing a significant threat to users worldwide.

Subscribe to receive our weekly threat digests and newsletters directly in your inbox.