Weekly Threat Digest: 16-22 May 2022
Published Vulnerabilities | Interesting Vulnerabilities | Active Threat Groups | Targeted Countries | Targeted Industries | ATT&CK TTPs |
466 | 6 | 2 | 26 | 10 | 27 |
For a detailed threat digest, download the pdf file here
Summary
The third week of May 2022 witnessed the discovery of 466 vulnerabilities out of which 6 gained the attention of Threat Actors and security researchers worldwide. Among these 6, there were 2 zero-day and 2 vulnerabilities about which the National vulnerability Database (NVD) is awaiting analysis while one of them was not present in the NVD at all. Hive Pro Threat Research Team has curated a list of 6 CVEs that require immediate action.
Further, we also observed two Threat Actor groups being highly active in the last week. Lazarus, a North Korean threat actor group popular for Information theft and espionage, was observed targeting Korea with a NukeSped backdoor. Additionally, a new ransomware family Axxes, was observed targeting the H Hotel, Dubai. Common TTPs which could potentially be exploited by these threat actors or CVEs can be found in the detailed section.