Weekly Threat Digest: 16-22 May 2022

Threat Digests

Weekly Threat Digest: 16-22 May 2022

Published VulnerabilitiesInteresting VulnerabilitiesActive Threat GroupsTargeted CountriesTargeted IndustriesATT&CK TTPs
46662261027

For a detailed threat digest, download the pdf file here

Summary

The third week of May 2022 witnessed the discovery of 466 vulnerabilities out of which 6 gained the attention of Threat Actors and security researchers worldwide. Among these 6, there were 2 zero-day and 2 vulnerabilities about which the National vulnerability Database (NVD) is awaiting analysis while one of them was not present in the NVD at all. Hive Pro Threat Research Team has curated a list of 6 CVEs that require immediate action.


Further, we also observed two Threat Actor groups being highly active in the last week. Lazarus, a North Korean threat actor group popular for Information theft and espionage, was observed targeting Korea with a NukeSped backdoor. Additionally, a new ransomware family Axxes, was observed targeting the H Hotel, Dubai. Common TTPs which could potentially be exploited by these threat actors or CVEs can be found in the detailed section.