Attacks, Vulnerabilities and Actors 2 October to 8 October 2023

For a detailed threat digest, download the pdf file here

Summary

HiveForce Labs has recently made several significant discoveries related to cybersecurity threats. Over the past week, we identified a total of seven executed attacks, zero instances of adversary activity, and eight zero-day vulnerabilities, highlighting the ever-present danger of cyberattacks.

Furthermore, HiveForce Labs uncovered a Malware-as-a-Service named BunnyLoader, which is being sold on various forums. BunnyLoader is a malicious software loader written in C/C++ and is sold for $250.

Meanwhile, A critical zero-day flaw, CVE-2023-22515, affecting Confluence Data Center and Server instances is being actively exploited. Also, the MOVEit Transfer product, exploited by Clop ransomware. These observed attacks have been on the rise, posing a significant threat worldwide.

Simply Subscribe to receive our weekly threat digests and newsletters directly in your inbox.