Attacks, Vulnerabilities and Actors 27 November to 3 December 2023

For a detailed threat digest, download the pdf file here Summary HiveForce Labs recently made several significant discoveries in the realm of cybersecurity threats. In the past week alone, a total of eight attacks were executed, six vulnerabilities were uncovered, and two active adversaries were identified. These findings underscore the persistent danger of cyberattacks. Furthermore, HiveForce Labs revealed that among the two zero-day vulnerabilities, one in WinRAR was exploited by DarkCasino, an APT group with economic motivations. Additionally, a vulnerability was identified in Google, marking the sixth zero-day flaw exploited by attackers widely. Hackers are actively exploiting a critical vulnerability in ownCloud. The Cactus ransomware is actively exploiting critical Qlik Sense vulnerabilities with the ultimate goal of establishing persistence and enabling remote control, infiltrating corporate networks stealthily. These attacks are on the rise, posing a significant threat to users worldwide. Subscribe to receive our weekly threat digests and newsletters directly in your inbox.