Attacks, Vulnerabilities and Actors 31 July to 6 August 2023

For a detailed threat digest, download the pdf file here

Summary

HiveForce Labs has recently made several significant discoveries related to cybersecurity threats. Over the past week, we identified a total of one executed attack, one instance of adversary activity, and thirteen vulnerabilities, including five zero-day vulnerabilities. Among these, a widely exploited vulnerability was found in the Ivanti EPMM, highlighting the ever-present danger of cyber attacks.

Furthermore, HiveForce Labs uncovered a new version of the Rilide Stealer malware that adeptly evades Chrome’s security measures to target Chromium-based browsers.

Meanwhile, APT 29, a Russia-based threat actor, employs targeted social engineering via Microsoft Teams to steal credentials. This involves leveraging compromised domains and convincing users to enter authentication codes, furthering their espionage objectives. All these observed attacks have been on the rise, posing a significant threat to users worldwide.

For a detailed threat digest, download the pdf file here