May 26, 2022

Weekly Threat Digest: 16-22 May 2022

Published VulnerabilitiesInteresting VulnerabilitiesActive Threat GroupsTargeted CountriesTargeted IndustriesATT&CK TTPs
46662261027

For a detailed threat digest, download the pdf file here

Summary

The third week of May 2022 witnessed the discovery of 466 vulnerabilities out of which 6 gained the attention of Threat Actors and security researchers worldwide. Among these 6, there were 2 zero-day and 2 vulnerabilities about which the National vulnerability Database (NVD) is awaiting analysis while one of them was not present in the NVD at all. Hive Pro Threat Research Team has curated a list of 6 CVEs that require immediate action.


Further, we also observed two Threat Actor groups being highly active in the last week. Lazarus, a North Korean threat actor group popular for Information theft and espionage, was observed targeting Korea with a NukeSped backdoor. Additionally, a new ransomware family Axxes, was observed targeting the H Hotel, Dubai. Common TTPs which could potentially be exploited by these threat actors or CVEs can be found in the detailed section.

Related Events

Dive into our library of resources for expert insights, guides, and in-depth analysis on maximizing Uni5 Xposure’s capabilities

Book a demo and find out more about how Hive Pro can double your operational efficiency

Book a Demo