Attacks, Vulnerabilities and Actors 1 January to 7 January 2024

For a detailed threat digest, download the pdf file here

Summary

HiveForce Labs has recently made several significant discoveries related to cybersecurity threats. Over the past week, we identified a total of twelve executed attacks, two instances of adversary activity, and three exploited vulnerability, highlighting the ever-present danger of cyberattacks.

Furthermore, HiveForce Labs uncovered APT28, targeting Ukraine and Poland to deploy previously undocumented malware, OCEANMAP, MASEPIE, and STEELHOOK, to gather sensitive information.

Meanwhile, a high severity zero-day vulnerability (CVE-2023-39336), in Ivanti Endpoint Manager that posed a risk of pre-authenticated sql injection and possibly Remote Code Injection in case of core server. These observed attacks have been on the rise, posing a significant threat worldwide.

Subscribe to receive our weekly threat digests and newsletters directly in your inbox.