Weekly Threat Digest: September 23 – September 29, 2024
For a detailed threat digest, download the pdf file here
Summary
HiveForce Labs has recently made significant advancements in identifying cybersecurity threats. Over the past week, they detected twelve attacks, reported two vulnerabilities, and identified four active adversaries. These findings underscore the relentless and escalating danger of cyber intrusions.
Additionally, Earth Baxia is a cyber espionage group targeting Asia-Pacific government organizations, particularly in Taiwan, utilizing spear-phishing tactics and the GeoServer vulnerability (CVE-2024-36401). This campaign aims to steal sensitive data from organizations through sophisticated attacks.
Furthermore, this week, North Korea’s Lazarus Group has persisted with two active cyber campaigns, PondRAT malware, hidden in Python packages on PyPI, targeting software developers, and “Operation Dream Job,” a phishing campaign aimed at the energy and aerospace sectors to deploy the MISTPEN backdoor via the BURNBOOK launcher. These rising threats pose significant and immediate dangers to users worldwide.
Subscribe to receive our weekly threat digests and newsletters directly in your inbox.