Category | Details |
---|---|
Top Attacks and Breaches | – Romania Election Interference: Russian-backed TikTok campaign and cyberattacks led to vote annulment. – Brain Cipher Ransomware: Claimed breach of Deloitte UK’s systems with 1TB of sensitive data allegedly stolen; Deloitte denies claims. – RECOPE Ransomware Attack: Manual operations in Costa Rica after ransomware disrupted fuel distribution systems. – ENGlobal Corporation Attack: US contractor targeted, leading to data encryption and limited IT access. – BT Group Attack: Black Basta ransomware group claimed 500GB of stolen data. – HUR DDoS on Gazprombank: Ukrainian retaliation aimed at disrupting Russian financial operations. – Stoli Group Attack: August ransomware attack caused operational disruption, leading to Chapter 11 bankruptcy. |
Vulnerabilities and Patches | – Windows NTLM Capture Flaw: Zero-day affecting Windows versions up to 11; unofficial micropatch available from 0patch. – Progress WhatsUp Gold RCE Vulnerability (CVE-2024-8785): Exploit enables registry modification and code execution; update to version 24.0.1 to mitigate risks. – Veeam Vulnerabilities (CVE-2024-42448 & CVE-2024-42449): Critical flaws in Service Provider Console allow code execution and NTLM hash theft; patches released. |
Threat Intelligence Reports | – Akira Ransomware Analysis: Check Point’s research reveals Rust-based ESXi variant targeting hypervisors with unique design features. – China’s Salt Typhoon Attacks: FBI and CISA report ongoing telecom targeting by China-affiliated actors, exfiltrating metadata and communications. – U.S. Organization Targeted in China: DLL-sideloading with tools like Impacket and PowerShell for data exfiltration over four months. – Secret Blizzard Espionage: Russian Turla group exploiting infrastructure of six other threat actors for intelligence collection in South Asia. |
Read full article:https://research.checkpoint.com/2024/9th-december-threat-intelligence-report/
Disclaimer: The above summary has been generated by an AI language model
Source: Checkpoint
Published on: December 9, 2024
Leave a Reply