Fortinet addresses Vulnerabilities in FortiADC, FortiOS and FortiProxy
Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary Fortinet has issued security patches for two high-severity vulnerabilities – an OS command vulnerability in FortiADC, and an out-of-bounds write flaw in sslvpnd of FortiOS and FortiProxy. To receive real-time threat …
SideCopy Resurfaces to Target Indian Defense
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary SideCopy’s recent campaign utilizes SILENTTRINITY and targets the Indian defense industry, warranting attention from SideCopy threat actors. To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn. …
New BlackBit Ransomware Targets South Korea
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary BlackBit ransomware, a variant of LokiLocker, checks keyboard layout, disables defenses, and presents payment info through various methods. To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn. …
New Atomic Stealer MacOS malware Steals Browser Cookies and Cryptocurrency Wallets
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary Atomic Stealer malware is a full-featured infostealer designed to steal sensitive data from macOS users. The malware can grab account passwords, browser data, session cookies, and crypto-wallets. To receive real-time threat …
Earth Longzhi Unleashes New ‘Stack Rumbling’ Tactic
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary APT41’s Earth Longzhi launches a new campaign targeting organizations in Asia Pacific using “stack rumbling” to disable security products and install Behinder web shell. To receive real-time threat advisories, please follow …
The Emergence of 1877 Team and Rising Hacktivist Threat
Threat Level Actor Report For a detailed threat advisory, download the pdf file here Summary The 1877 Team is a hacktivist collective founded by a small group of Iraqi Kurds in July 2021. The 1877 Team has claimed responsibility for a range of cyber attacks on national …
New LOBSHOT Malware Being Distributed Through Google Ads
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary LOBSHOT is a new malware that is being distributed through Google Ads. It is a remote access trojan that can allow threat actors to take control of an infected Windows device’s …
TP-Link Router Vulnerability Triggers Mirai Malware Infection
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary The TP-Link router vulnerability allows attackers to execute commands and infect devices with the Mirai malware. To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn. …
FIN7-Affiliated Hackers Exploit Flaws in Veeam Backup Servers
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary Publicly accessible servers using Veeam Backup & Replication (VBR) software were attacked, likely through a recently fixed vulnerability (CVE-2023-27532), by a group with similarities to the FIN7 activity group. To receive …
Outdated Internet Protocol Vulnerable to Massive DoS
Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary Critical SLP vulnerability affects 54k devices, including VMware, posing a risk of massive DoS attacks costing businesses up to $120k. To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn. …