Deciphering LilacSquid’s Strategies for Long-Term Data Theft

...

Patches Made Available for Vulnerable EoL Zyxel NAS Models

...

Chained Flaws in Progress Telerik Report Server Enable Unauthenticated RCE

...

Summary of Vulnerabilities, Actors & Attacks: May 2024

Vulnerabilities Exploited| Adversaries in Action| Attacks Executed| Targeted Countries| Targeted Industries| MITRE ATT&CK TTPs ---|---|---|---|---|--- 24| 11| 38| 287| 23| 233 Summary In May, the cybersecurity arena garnered significant attention following the identification of eleven zero-day...

CISA Known Exploited Vulnerability Catalog May 2024

Summary The Known Exploited Vulnerability KEV catalog, maintained by CISA, is the authoritative source of vulnerabilities that have been exploited in the wild. It is recommended that all organizations review and monitor the KEV catalog, prioritize remediation of listed vulnerabilities, and reduce...

Attacks, Vulnerabilities and Actors 27 May to 02 June 2024

For a detailed threat digest, download the pdf file here Summary HiveForce Labs recently made several significant discoveries in the realm of cybersecurity threats. In the past week alone, a total of four attacks were executed, three vulnerabilities were uncovered, and two active adversaries were...

UNC5537 Targeting Snowflake Users for Data Theft and Extortion

...

Check Point Fixes Zero-Day CVE-2024-24919 Exploited in the Wild

...

Moonstone Sleet: A New North Korean Cyber Threat

...

JAVS Courtroom Recording Software Hit by Supply Chain Attack

...

ShrinkLocker: Ransomware Exploits BitLocker for Drive Encryption

...

Attacks, Vulnerabilities and Actors 20 to 26 May 2024

For a detailed threat digest, download the pdf file here Summary HiveForce Labs recently made several significant discoveries in the realm of cybersecurity threats. In the past week alone, a total of twelve attacks were executed, four vulnerabilities were uncovered, and three active adversaries...

Google Fends Off Fourth Zero-Day in May

...

Patch Now Critical Auth Bypass Flaw in GitHub Enterprise Server Fixed

...

GitLab Flaw Allows Account Takeover via XSS Attacks

...

Turla’s Tiny Backdoor Exploits MSBuild to Evade Detection

...

Sharp Dragon’s Foray into African and Caribbean Governance Networks

...

Stealing the Spotlight a Comprehensive Look at Stealers

...

REF4578 Campaign Unleashes the Highly Modular GhostEngine Malware

...

D3Fack Loader: New Malware Exploits Google Ads and EV Certificates

...

CLOUD#REVERSER: From Cloud Storage to Command and Control

...

QNAP Flaws Enable Remote Code Execution Under Certain Conditions

...

Breaking Down Andariel APT’s Strike on South Korean Entities

...

Attacks, Vulnerabilities and Actors 13 to 19 May 2024

...

Critical ‘Linguistic Lumberjack’ Flaw in Fluent Bit Hits Major Cloud Providers

...

Grandoreiro Trojan: An Evolving Threat to Global Banking

...

Metamorfo Banking Trojan Targets the Americas

...

DarkGate Malware: Persistent Threat in Active Distribution

...

SugarGh0st RAT Infiltrates US AI Sector

...

Kimsuky Expands Its Arsenal with New Backdoor

...

LunarWeb and LunarMail: The Secret Weapons of the Turla APT

...

Ebury A Potent Linux Botnet Infects Over 400K Servers

...

Microsoft’s May 2024 Patch Tuesday Addresses Two Zero-day Vulnerabilities

...

Social Engineering Campaign Abuses RMM Tools, Linked to Black Basta

...

Trinity Ransomware Strikes with the Dual Extortion Strategy

...

Yet Another Google Chrome Zero-Day Exploited in the Wild

...

Black Basta Ransomware Impacts Over 500 Organizations Worldwide

...

Attacks, Vulnerabilities and Actors 6 to 12 May 2024

...

FIN7 Group Leverages Sponsored Ads to Disseminate Malicious Payloads

...

LLMjacking: An Attack Method for Stealing Cloud Credentials

...

The RokRAT Epidemic in South Korea

...

Google Chrome Fixes Zero-Day CVE-2024-4671 Exploited in the Wild

...

APT28’s Intricate Email Campaign Against Poland

...

Hackers Exploit LiteSpeed Cache for WordPress Site Takeover

...

BIG-IP Next Central Manager Flaws Lead To Administrative Control

...

zEus Stealer’s Undercover Operation on YouTube and Minecraft

...

HijackLoader Enhances Its Arsenal with New Evasion Techniques

...

Cuttlefish Malware Silent Stalkers of Router Traffic

...

Tinyproxy Vulnerability Exposes Hosts to Remote Code Execution

...

APT42’s Operations Employ “Nicecurl” and “Tamecat” Malwares

...