Lucene search
K
HiveproMost viewed

1589 matches found

hivepro
hivepro
added 2023/06/14 2:15 p.m.15 views

Microsoft’s June 2023 Patch Tuesday Addresses 78 Vulnerabilities

Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary Microsofts June 2023 Patch Tuesday addressed 78 flaws, including 38 remote code execution vulnerabilities. Notable fixes included SharePoint and Exchange Server vulnerabilities, while no zero-day...

7.9AI score
Exploits0
hivepro
hivepro
added 2023/05/25 9:13 a.m.15 views

A Zero-Day Vulnerability Found in Barracuda Email Security Gateway

Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary Zero-day Vulnerability Exploited in Barracuda Email Security Gateway Appliances, Promptly Patched, and a Subset of Customers Notified; Other Barracuda Products are Unaffected. To receive real-time...

6.8AI score
Exploits0
hivepro
hivepro
added 2023/05/12 10:18 a.m.15 views

CACTUS Ransomware Emerges as New Threat Targeting Large Enterprises

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary CACTUS is a new strain of ransomware that targets large commercial entities using a variety of tools and tactics to distribute the ransomware binary and maintain persistence within the environment while...

6.9AI score
Exploits0
hivepro
hivepro
added 2023/05/04 9:31 a.m.15 views

TP-Link Router Vulnerability Triggers Mirai Malware Infection

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary The TP-Link router vulnerability allows attackers to execute commands and infect devices with the Mirai malware. To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn...

7.3AI score
Exploits0
hivepro
hivepro
added 2023/04/19 11:33 a.m.15 views

HivePro Uni5 – Solution Overview

In this video, Anand Choudha, CEO at Hive Pro, and Jeelan Poola, CPO at Hive Pro, introduce the HivePro Uni5 Threat Exposure Management Platform. HivePro Uni...

6.8AI score
Exploits0
hivepro
hivepro
added 2023/04/19 11:28 a.m.15 views

HivePro Uni5 – Datasheet

In this video, Anand Choudha, CEO at Hive Pro, and Jeelan Poola, CPO at Hive Pro, introduce the HivePro Uni5 Threat Exposure Management Platform. HivePro Uni...

6.8AI score
Exploits0
hivepro
hivepro
added 2023/04/18 9:7 a.m.15 views

APT36 targets Indian educational institutions with Crimson RAT

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary APT36 is targeting educational institutions and students in the Indian subcontinent by distributing malicious documents to stage the Crimson RAT. To receive real-time threat advisories, please follow...

6.7AI score
Exploits0
hivepro
hivepro
added 2023/04/18 7:6 a.m.15 views

Actors, Threats and Vulnerabilities 10 April to 16 April 2023

For a detailed threat digest, download the pdf file here Summary For a detailed threat digest, download the pdf file here HiveForce Labs recently made several significant discoveries related to cybersecurity threats. Over the past week, they identified a total of nine attacks that were executed...

6.7AI score
Exploits0
hivepro
hivepro
added 2023/04/10 12:20 p.m.15 views

UNC4466 Attack Campaign Targets Veritas Backup Exec and Deploys ALPHV Ransomware

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary UNC4466 conducted an attack campaign in late 2022, gaining initial access to an internet-exposed Windows server running Veritas Backup Exec and deploying the ALPHV ransomware, with over 8,500 potentially...

6.7AI score
Exploits0
hivepro
hivepro
added 2023/03/28 8:22 a.m.15 views

Unveiling ChinaZ DDoS Threat Landscape

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary ChinaZ, a Chinese threat group, is infamous for using DDoS botnets to attack Windows and Linux systems. To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn...

6.7AI score
Exploits0
hivepro
hivepro
added 2023/03/13 11:59 a.m.15 views

New GoBruteforcer Malware Targeting Web Servers Running Popular Services

Threat Level Attack Report Follow Hive Pro for a detailed threat advisory, download the pdf file here from HiveForce Labs. Summary The GoBruteforcer malware targets web servers and uses Golang programming language. It employs CIDR block scanning to access servers through brute force and deploy an...

2.5AI score
Exploits0
hivepro
hivepro
added 2023/03/09 1:13 p.m.15 views

Sharp Panda A Sophisticated Cyber-Espionage Campaign Targeting Governments

Threat Level Actor Report Follow Hive Pro for a detailed threat advisory, download the pdf file here from HiveForce Labs. Summary The Sharp Panda cyber-espionage campaign, which has been active for a considerable period, focuses on infiltrating government entities in Southeast Asia. This operatio...

1.4AI score
Exploits0
hivepro
hivepro
added 2023/02/27 10:36 a.m.15 views

Deceptive Discord Campaign Targets Government Entities with PureCrypter Malware

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary Government entities in the Asia-Pacific and North American regions have been targeted by a threat actor using the PureCrypter malware downloader. This particular malware has been used to distribute vario...

2.4AI score
Exploits0
hivepro
hivepro
added 2023/02/23 9:23 a.m.15 views

Newly Identified Threat Actor Hydrochasma Targets Shipping Companies and Medical Laboratories in Asia

Threat Level Actor Report For a detailed threat advisory, download the pdf file here Summary Hydrochasma is a newly identified threat actor that has been targeting shipping companies and medical laboratories in Asia since October 2022. This groups primary focus appears to be on intelligence...

0.9AI score
Exploits0
hivepro
hivepro
added 2023/02/23 7:39 a.m.15 views

HardBit Ransomware: A Threatening Cyber Attack Targeting Organizations with New Version 2.0

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary HardBit is a ransomware strain that focuses on extorting cryptocurrency payments from organizations in exchange for data decryption. It first emerged in October 2022, and a newer version, HardBit 2.0,...

2.4AI score
Exploits0
hivepro
hivepro
added 2023/02/10 12:41 p.m.15 views

An Authentication Vulnerability Discovered in Jira Service Management Server and Data Center

Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary A security vulnerability was found in Jira Service Management Server and Data Center versions 5.3.0 to 5.5.0 which allows an attacker to access a Jira Service Management instance by impersonating...

4.7AI score
Exploits0
hivepro
hivepro
added 2023/02/07 2:22 p.m.15 views

A new botnet called the Medusa Botnet is emerging via Mirai Botnet targeting Linux users

Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary Mirai is a botnet that has been active since 2016 and exploits vulnerabilities in Linux-based networking devices like routers and IoT devices to gain control and perform malicious activities like...

3.8AI score
Exploits0
hivepro
hivepro
added 2023/01/27 1:5 p.m.15 views

Similarities between hacktivist groups reveal Iranian connection

Threat Level Actor Report For a detailed threat advisory, download the pdf file here Summary COBALT SAPLING is a threat actor group that is believed to be Iranian in origin. The group has been found to operate multiple hacktivist group personas, including Moses Staff and Abrahams Ax. Researchers...

2.4AI score
Exploits0
hivepro
hivepro
added 2023/01/25 6:39 a.m.15 views

Chinese Threat Actors Leverage Phishing and GuLoader to Distribute Remcos RAT

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary The malicious campaign described involves the distribution of a malicious PDF file through email, via phishing. The PDF file in this case redirects victims to a legitimate cloud-based platform, where the...

2.2AI score
Exploits0
hivepro
hivepro
added 2023/01/25 4:37 a.m.15 views

A New Malware Called Album Stealer is Targeting Facebook Users

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary Album Stealer is a malware that disguises itself as a photo album and drops decoy adult images while performing malicious activity in the background. It uses a side-loading technique to execute malicious...

3.7AI score
Exploits0
hivepro
hivepro
added 2022/12/27 7:0 a.m.15 views

GuLoader’s Advanced Anti-Analysis Techniques

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary GuLoader is an advanced malware downloader that uses polymorphic shellcode to bypass traditional security solutions. In GuLoader, all embedded DJB2 hash values are mapped against every API used by the...

0.8AI score
Exploits0
hivepro
hivepro
added 2022/12/26 12:50 p.m.15 views

Vice Society gang switches to new custom ransomware

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary Vice Society is a well-established ransomware group that has successfully targeted a range of enterprises. They aim to maximize their financial gain by using the standard double extortion strategy. In...

1.8AI score
Exploits0
hivepro
hivepro
added 2022/12/22 10:30 a.m.15 views

New Exploit Method that Bypasses ProxyNotShell Mitigations

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary A new exploit method has been found in the mitigations of the Microsoft Exchange vulnerability ProxyNotShell URL rewrite that allows for remote code execution RCE on compromised servers through Outlook W...

3.7AI score
Exploits0
hivepro
hivepro
added 2022/12/19 1:5 p.m.15 views

Agenda ransomware made its return with a Rust variant

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary In addition to BlackCat, Hive, Luna, and RansomExx, Agenda is the latest ransomware strain to use the cross-platform programming language Rust. Ransomware-as-a-service RaaS group Agenda, attributed to an...

3.1AI score
Exploits0
hivepro
hivepro
added 2022/11/21 10:36 a.m.15 views

RapperBot Campaign Launches DDoS Attacks on Game Servers

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary The new RapperBot malware version creates a botnet capable of launching Distributed Denial of Service DDoS attacks. The latest version can launch Telnet brute-force strikes, DoS attacks using the Generic...

3.8AI score
Exploits0
hivepro
hivepro
added 2022/11/16 1:12 p.m.15 views

Billbug returns after two years to conduct an espionage campaign

Threat Level Actor Report For a detailed threat advisory, download the pdf file here Summary After being widely active in the year 2018-2019, Billbug, a Chinese state-sponsored group, is back after almost two years. They have been attacking multiple government agencies in an Asian country since...

2.9AI score
Exploits0
hivepro
hivepro
added 2022/10/29 2:36 p.m.15 views

WHAT YOU SHOULD KNOW: Patch OpenSSL 3.x

...

1.7AI score
Exploits0
hivepro
hivepro
added 2022/09/21 5:8 a.m.15 views

Summary of Vulnerabilities & Threats: July 2022

...

1.9AI score
Exploits0
hivepro
hivepro
added 2022/09/01 10:50 a.m.15 views

MuddyWater targets Israeli organizations by exploiting unpatched log4j vulnerabilities

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary MuddyWater, an Iranian threat actor, exploits Log4j two vulnerabilities in SysAid applications to target Israeli organizations. As soon as the attacker gains access to the targeted organization, it...

1.2AI score
Exploits0
hivepro
hivepro
added 2022/08/23 12:42 a.m.15 views

Vulnerabilities & Threats that Matter 15 – 21th Aug

...

2.2AI score
Exploits0
hivepro
hivepro
added 2022/08/10 7:8 a.m.15 views

Industrial Spy trades stolen data on dark web Marketplace

Threat Level Attack Report For a detailed advisory, download the pdf file here Summary Since March 2022, Industrial Spy ransomware, a new menace in the threat environment, has been stealing and selling data on the dark web marketplace and conducting double extortion attacks, combining data theft...

2AI score
Exploits0
hivepro
hivepro
added 2022/07/27 5:22 a.m.15 views

Revamped version of Redeemer Ransomware has been uncovered on Dark Web Forums

Threat Level Attack Report For a detailed advisory, download the pdf file here Summary A new version of the free Redeemer ransomware has been discovered on hacker forums, providing inexperienced threat actors with an easy entry into the field of encryption-backed extortion campaigns. The new 2.0...

2.9AI score
Exploits0
hivepro
hivepro
added 2022/07/19 12:46 p.m.15 views

Vulnerabilities & Threats that Matter 11-17 July 2022

Published Vulnerabilities Interesting Vulnerabilities Active Threat Groups Targeted Countries Targeted Industries ATT&CK TTPs 580 37 2 World-wide 11 61 For a detailed threat digest, download the pdf file here Summary The second week of July 2022 witnessed the discovery of 580 vulnerabilities out ...

1.2AI score
Exploits0
hivepro
hivepro
added 2022/06/23 9:9 a.m.15 views

ToddyCat exploits unknown vulnerability in Microsoft Exchange servers to targets entities in Europe and Asia

Threat Level Actor Report For a detailed advisory, download the pdf file here Summary ToddyCat, an APT group is deploying web shells by exploiting an unknown vulnerability in the Microsoft Exchange Servers. They are initiating a multi-stage infection that aims at governmental bodies in Europe and...

3.7AI score
Exploits0
hivepro
hivepro
added 2022/06/17 5:28 a.m.15 views

GALLIUM targets Telecommunications sector using new PingPull tool

Threat Level Actor Report For a detailed advisory, download the pdf file here Summary A new, difficult-to-detect remote access trojan known as PingPull has been discovered and is used by GALLIUM also known as Softcell, an APT group. They have expanded by targeting telecommunications, finance and...

2.3AI score
Exploits0
hivepro
hivepro
added 2022/03/16 11:57 a.m.15 views

Pandora Ransomware Targets Multiple Plants around the Globe

THREAT LEVEL: Red. For a detailed advisory, download the pdf file here Pandora ransomware is a new operation that targets business networks and obtains data for double-extortion assaults and active since March 2022. DENSO, a Japanese auto parts manufacturers plant in Germany, and Global Wafers...

6.9AI score
Exploits0
hivepro
hivepro
added 2024/07/19 7:8 p.m.14 views

Global IT Outage Causes Travel and Service Chaos: A Comprehensive Overview

A massive IT outage is sending shockwaves across the globe, leading to significant disruptions in travel, banking, and healthcare services. The chaos originated from two distinct issues: a misconfiguration that caused a Microsoft Azure service outage and a defective update in Crowdstrike's Falcon...

7.5AI score
Exploits0
hivepro
hivepro
added 2024/06/10 11:55 a.m.14 views

CarnavalHeist: New Banking Trojan Targets Brazilian Users

...

7.3AI score
Exploits0
hivepro
hivepro
added 2024/05/30 9:56 a.m.14 views

ShrinkLocker: Ransomware Exploits BitLocker for Drive Encryption

...

7.3AI score
Exploits0
hivepro
hivepro
added 2024/05/27 10:20 a.m.14 views

GitLab Flaw Allows Account Takeover via XSS Attacks

...

7.3AI score
Exploits0
hivepro
hivepro
added 2024/05/23 12:30 p.m.14 views

CLOUD#REVERSER: From Cloud Storage to Command and Control

...

7.3AI score
Exploits0
hivepro
hivepro
added 2024/05/16 4:39 p.m.14 views

Microsoft’s May 2024 Patch Tuesday Addresses Two Zero-day Vulnerabilities

...

7.3AI score
Exploits0
hivepro
hivepro
added 2024/05/14 10:49 a.m.14 views

LLMjacking: An Attack Method for Stealing Cloud Credentials

...

7.3AI score
Exploits0
hivepro
hivepro
added 2024/05/03 1:7 p.m.14 views

Summary of Vulnerabilities, Actors & Attacks: April 2024

...

7.3AI score
Exploits0
hivepro
hivepro
added 2024/05/01 5:16 p.m.14 views

Akira Ransomware Nets $42 Million from 250+ Victims

...

7.3AI score
Exploits0
hivepro
hivepro
added 2024/04/29 3:31 p.m.14 views

Unmasking ArcaneDoor: A Cyber Espionage Surge Against Critical Infrastructure

Discovery of a Digital Breach Even our most sensitive governmental and infrastructural data is not guaranteed safe. A new breach has been uncovered, ominously named "ArcaneDoor." According to HiveForce Labs, this campaign has been meticulously orchestrated with the primary aim of breaching the...

7.6AI score
Exploits0
hivepro
hivepro
added 2024/04/16 1:2 p.m.14 views

One Unified API: The Future of Security Data Management with Uni5 Xposure

Picture yourself as a security analyst in the midst of navigating the complex landscape of your organization's cybersecurity. Your daily routine is dominated by the task of managing an overwhelming amount of security data, spread across an array of tools and platforms. Each piece of data, whether...

7.5AI score
Exploits0
hivepro
hivepro
added 2024/04/16 8:0 a.m.14 views

MuddyWater Enhances Its Arsenal with DarkBeatC2 Framework

...

7.3AI score
Exploits0
hivepro
hivepro
added 2024/04/12 12:20 p.m.14 views

Microsoft’s April 2024 Patch Tuesday Addresses Two Zero-day Vulnerabilities

...

7.3AI score
Exploits0
hivepro
hivepro
added 2024/04/10 1:24 p.m.14 views

Critical RCE Flaw Found in EoL D-Link NAS Devices

...

7.3AI score
Exploits0
Total number of security vulnerabilities1589