October 1, 2024

Weekly Threat Digest: September 23 – September 29, 2024

For a detailed threat digest, download the pdf file here


Summary

HiveForce Labs has recently made significant advancements in identifying cybersecurity threats. Over the past week, they detected twelve attacks, reported two vulnerabilities, and identified four active adversaries. These findings underscore the relentless and escalating danger of cyber intrusions.

Additionally, Earth Baxia is a cyber espionage group targeting Asia-Pacific government organizations, particularly in Taiwan, utilizing spear-phishing tactics and the GeoServer vulnerability (CVE-2024-36401). This campaign aims to steal sensitive data from organizations through sophisticated attacks.

Furthermore, this week, North Korea’s Lazarus  Group has persisted with two active cyber campaigns, PondRAT malware, hidden in Python packages on PyPI, targeting software developers, and Operation Dream Job,” a phishing campaign aimed at the energy and aerospace sectors to deploy the MISTPEN backdoor via the BURNBOOK launcher. These rising threats pose significant and immediate dangers to users worldwide.

Subscribe to receive our weekly threat digests and newsletters directly in your inbox.

Recent Resources

Dive into our library of resources for expert insights, guides, and in-depth analysis on maximizing Uni5 Xposure’s capabilities

Book a demo and find out more about how Hive Pro can double your operational efficiency

Book a Demo