New AndoryuBot Malware Exploits Ruckus Wireless Flaw for DDoS Attacks
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary AndoryuBot targets critical Ruckus Wireless Admin panel vulnerability to infect Wi-Fi access points for use in DDoS attacks, malware supports 12 DDoS attack modes and is marketed through YouTube videos. To …
Kimsuky APT Group Employs ReconShark
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary Kimsuky, a North Korean APT group, is using a new malware tool called ReconShark to conduct global cyberattacks. To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn. …
A New Akira Ransomware Targets Multiple Industries and Demands Millions in Extortion
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary Akira ransomware is a new threat targeting corporate networks and has already attacked several companies in various industries, stealing their data and demanding ransom from $200,000 to millions of dollars. To …
Actors, Threats and Vulnerabilities 01 to 07 May 2023
For a detailed threat digest, download the pdf file here Summary HiveForce Labs recently made several significant discoveries related to cybersecurity threats. Over the past week, the fact that there were a total of eight attacks executed, taking advantage of different vulnerabilities in various systems, and …
Dragon Breath APT Evolves with Double DLL Sideloading
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary Dragon Breath APT targets the gambling industry using the double-clean-app technique & DLL sideloading. Chinese-speaking Windows users are being targeted. To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn. …
Fortinet addresses Vulnerabilities in FortiADC, FortiOS and FortiProxy
Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary Fortinet has issued security patches for two high-severity vulnerabilities – an OS command vulnerability in FortiADC, and an out-of-bounds write flaw in sslvpnd of FortiOS and FortiProxy. To receive real-time threat …
SideCopy Resurfaces to Target Indian Defense
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary SideCopy’s recent campaign utilizes SILENTTRINITY and targets the Indian defense industry, warranting attention from SideCopy threat actors. To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn. …
New BlackBit Ransomware Targets South Korea
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary BlackBit ransomware, a variant of LokiLocker, checks keyboard layout, disables defenses, and presents payment info through various methods. To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn. …
New Atomic Stealer MacOS malware Steals Browser Cookies and Cryptocurrency Wallets
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary Atomic Stealer malware is a full-featured infostealer designed to steal sensitive data from macOS users. The malware can grab account passwords, browser data, session cookies, and crypto-wallets. To receive real-time threat …
Earth Longzhi Unleashes New ‘Stack Rumbling’ Tactic
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary APT41’s Earth Longzhi launches a new campaign targeting organizations in Asia Pacific using “stack rumbling” to disable security products and install Behinder web shell. To receive real-time threat advisories, please follow …