Unveiling Cadet Blizzard APT’s Wiper Attacks Targeting Ukraine
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary Cadet Blizzard, a Russian GRU-sponsored threat group, conducted major cyber operations using WhisperGate, a customized wiper malware, to demonstrate their destructive capabilities through targeted attacks on Ukrainian government organizations. To receive …
LockBit Ransomware Evolving Tactics and Pervasive Impact in 2023
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary LockBit ransomware is a highly impactful Ransomware-as-a-Service (RaaS) variant that targets critical sectors globally. Since 2020, victims in the US alone have paid around $91 million in ransom payments. LockBit continues …
Chinese Espionage Hackers Exploit ESXi Zero-Day
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary The Chinese-sponsored hacking group, UNC3886, has been actively exploiting the CVE-2023-20867 vulnerability and using advanced backdoors such as VirtualPita and VirtualPie to carry out malicious activities across organizations in the US …
Microsoft’s June 2023 Patch Tuesday Addresses 78 Vulnerabilities
Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary Microsoft’s June 2023 Patch Tuesday addressed 78 flaws, including 38 remote code execution vulnerabilities. Notable fixes included SharePoint and Exchange Server vulnerabilities, while no zero-day exploits were patched. To receive real-time …
DoubleFinger A Sneaky Loader Targets Cryptocurrency
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary A sophisticated campaign utilized an advanced multi-stage DoubleFinger loader to deploy the GreetingGhoul malware, which is designed to steal cryptocurrency credentials. To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn. …
A Flaw in Microsoft Visual Studio Installer Enables Malicious Extension Distribution
Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary A vulnerability in Microsoft Visual Studio Installer allows attackers to gain unauthorized access, compromise systems, and distribute malicious extensions, posing a significant security risk. To receive real-time threat advisories, please follow …
Fortinet Releases Patch for Pre-announced Critical Vulnerability
Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary Fortinet has addressed a critical vulnerability in FortiOS and FortiProxy SSL-VPN, resolving a heap-based buffer overflow pre-authentication flaw. This update is crucial because the vulnerability enables remote attackers to execute arbitrary …
Stealth Soldier Strikes North Africa with Espionage Attacks
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary Stealth Soldier is a backdoor malware that conducts surveillance and espionage attacks. It targeted North Africa by mimicking Libyan websites to distribute malware. To receive real-time threat advisories, please follow HiveForce …
Asylum Ambuscade Unmasking the Hybrid Threat Group in Cybersecurity
Threat Level Actor Report For a detailed threat advisory, download the pdf file here Summary Asylum Ambuscade: A cybercrime group active since 2020, targeting banks, cryptocurrency traders, and governments in North America, Europe, Asia, Africa, and South America. Their tactics include spear phishing, exploiting vulnerabilities, and …
Satacom Malware Campaign Unleashed Crypto-stealing Extension
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary A recently discovered malware campaign has been identified, utilizing the Satacom downloader as a conduit to distribute covert malware designed to illicitly extract cryptocurrency using a deceitful extension tailored for browsers …