Attacks, Vulnerabilities and Actors 6 to 12 May 2024

For a detailed threat digest, download the pdf file here

Summary

HiveForce Labs has recently unveiled several profound revelations within the domain of cybersecurity threats. Within the span of the past week alone, HiveForce Labs has unearthed six executed attacks, disclosed three vulnerabilities, and pinpointed two active adversaries. These discoveries underscore the persistent and mounting peril posed by cyber intrusions.

Furthermore, HiveForce Labs has unveiled that APT42 has been observed targeting entities across both the Middle East and Western regions, penetrating their cloud infrastructures and corporate networks through adept social engineering tactics. Meanwhile, Cuttlefish has been detected infiltrating routers at both enterprise and small office/home office (SOHO) levels, clandestinely monitoring data transmissions, and pilfering authentication credentials.

Moreover, the zero-day vulnerability found in Google Chrome’s Visuals component, officially designated as CVE-2024-4671, has been rectified by Google in its recent security patch. Simultaneously, the emergence of RokRAT malware is specifically geared toward South Korean users, employing LNK files masquerading within evidently genuine documents. These attacks are on the rise, posing a significant and immediate threat to users worldwide.

Subscribe to receive our weekly threat digests and newsletters directly in your inbox.