| Category | Details |
|---|---|
| Top Attacks and Breaches | – Blue Yonder: Ransomware attack disrupted client services (Starbucks, Sainsbury’s). – Uganda Central Bank: Cyberattack, $16.8M stolen; insiders possibly involved. – Hoboken, NJ: Ransomware attack halted municipal services. – UK NHS Trust: Cyberattack caused IT outages. – Great Plains Hospital: Ransomware exposed 130,000+ records. – IGT: Cyberattack disrupted gaming systems. – Bologna FC: Ransomware led to stolen personal and sponsor data. |
| Vulnerabilities and Patches | – ProjectSend (CVE-2024-11680): Critical flaw exploited; 99% unpatched instances. – WordPress Plugin (CVE-2024-8672): Arbitrary code execution vulnerability. – Jenkins: High-severity flaws (DoS, XSS) patched. |
| Threat Intelligence Reports | – Godot Engine Exploit: “GodLoader” malware bypasses AV detection, spreads across platforms. – Salt Typhoon: China-linked APT uses “GhostSpider” backdoor to target Southeast Asian telcos. – RomCom Group: Exploited Firefox and Windows zero-days for RCE. |
Read full article:https://research.checkpoint.com/2024/2nd-december-threat-intelligence-report/
Disclaimer: The above summary has been generated by an AI language model
Leave a Reply