Attacks, Vulnerabilities and Actors 11 September to 17 September 2023

For a detailed threat digest, download the pdf file here

Summary

HiveForce Labs recently made several significant discoveries related to cybersecurity threats. Over the past week, a total of eight attacks were executed, along with eleven vulnerabilities discovered, and two different adversaries were identified, all of which underscore the ever-present danger of cyberattacks.

Moreover, HiveForce Labs discovered that the Cisco zero-day vulnerability was exploited by the Akira Ransomware threat actors, playing a pivotal role in breaching corporate networks and leveraging tools like RustDesk for stealthy access. Additionally, identified zero-days in Google, Adobe Acrobat, Apple, and Microsoft.

In the meantime, Charming Kitten orchestrated a sophisticated campaign employing the Sponsor backdoor, targeting 34 diverse entities across Brazil, Israel, and the United Arab Emirates. Storm-0324 exploited a Microsoft Teams zero-day to deploy JSSLoader. These attacks are on the rise, posing a significant threat to users worldwide.

Simply Subscribe to receive our weekly threat digests and newsletters directly in your inbox.