Attacks, Vulnerabilities and Actors 9 October to 15 October 2023

For a detailed threat digest, download the pdf file here

Summary

HiveForce Labs has recently made several significant discoveries related to cybersecurity threats. Over the past week, we identified a total of twenty executed attacks, two instance of adversary activity, and fourteen vulnerabilities, including two zero-day vulnerabilities, highlighting the ever-present danger of cyberattacks.

Furthermore, HiveForce Labs discovered a CVE-2023-44487 vulnerability in HTTP/2, allowing remote attackers to launch a DoS attack using a Rapid Reset Attack.

Meanwhile, the Stayin’ Alive campaign, affiliated with the ToddyCat group, employs sophisticated tactics, including spear phishing and DLL sideloading, to target specific countries in Asia, particularly entities in the Telecom industry and government. These observed attacks have been on the rise, posing a significant threat to users worldwide.

Simply Subscribe to receive our weekly threat digests and newsletters directly in your inbox.