September 29, 2022

Vulnerabilities & Threats that Matter 19 – 25 September

Published VulnerabilitiesInteresting VulnerabilitiesActive Threat GroupsTargeted CountriesTargeted IndustriesATT&CK TTPs
58361Worldwide1054

For a detailed threat digest, download the pdf file here

Summary

The third week of September 2022 witnessed the discovery of 583 vulnerabilities out of which 6 gained the attention of Threat Actors and security researchers worldwide. Among these 6, there was 2 zero-day. Hive Pro Threat Research Team has curated a list of 6 CVEs that require immediate action.


This week also witnessed the exploitation of two-year-old remote code execution vulnerabilities in Oracle WebLogic Server to deploy Kinsingmalware.


Further, we also observed 1 Threat Actor groups being highly active in the last week. UNC4034 , a North Korean threat actor, popular for financial gain that used a fake job posting to lure victims into downloading a trojanizedversion of PuTTY . Common TTPs which could potentially be exploited by these threat actors or CVEs can be found in the detailed section.

Recent Resources

Dive into our library of resources for expert insights, guides, and in-depth analysis on maximizing Uni5 Xposure’s capabilities

Book a demo and find out more about how Hive Pro can double your operational efficiency

Book a Demo