Attacks, Vulnerabilities and Actors 26 June to 2 July 2023

For a detailed threat digest, download the pdf file here

Summary

HiveForce Labs recently made several significant discoveries related to cybersecurity threats. Over the past week, the fact that there were a total of four attacks executed, taking advantage of three different vulnerabilities in various systems, and involving two different adversaries highlights the ever-present danger of cyber attacks.

HiveForce Labs also highlighted repojacking vulnerabilities possible with millions of github repositories, notably no of these repos are related with big tech giant. A critical Remote Code Execution vulnerability with CVSS score of 9.6 was also discovered in FortiNAC.

Moreover, HiveForce Labs also discovered that APT28 exploited three old vulnerabilities related to Roundcube Mailing platform. And Threat Actor Andariel bolsters their arsenal with a newly developed lightweight EarlyRat malware.

Meanwhile, A new malware PindOS was found to be deploying Ransomware related malwares. Also, A new attack campaign MULTI#STORM strikes USA and India. All these attacks were observed to be on the rise, posing a significant threat to users all over the world.

For a detailed threat digest, download the pdf file here