Lucene search

Hive ProHIVEPRO:15F482C383DB6245690BD096BB8794E3

HistoryDec 27, 2023 - 7:23 a.m.

Attacks, Vulnerabilities and Actors 18 December to 24 December 2023

2023-12-2707:23:59

Hive Pro

www.hivepro.com

cybersecurity threats

executed attacks

adversary activity

exploited vulnerabilities

muddywater

iranian espionage

telecommunications

zero-day vulnerability

google chrome

threat digests

newsletters

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

7.4 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.004 Low

EPSS

Percentile

72.6%

JSON

For a detailed threat digest, download the pdf file here Summary HiveForce Labs has recently made several significant discoveries related to cybersecurity threats. Over the past week, we identified a total of 15 executed attacks, 4 instances of adversary activity, and 7 exploited vulnerabilities, highlighting the ever-present danger of cyberattacks. Furthermore, HiveForce Labs uncovered Iranian espionage group Muddywater, which targeted telecommunications companies in Egypt, Sudan, and Tanzania as part of their espionage efforts. Meanwhile, a high severity zero-day vulnerability (CVE-2023-7024), in Google Chrome that can lead to program crashes or enable arbitrary code execution. These observed attacks have been on the rise, posing a significant threat worldwide. Subscribe to receive our weekly threat digests and newsletters directly in your inbox.