Press ESC to close

9th December – Threat Intelligence Report

Category Details
Top Attacks and Breaches Romania Election Interference: Russian-backed TikTok campaign and cyberattacks led to vote annulment.
Brain Cipher Ransomware: Claimed breach of Deloitte UK’s systems with 1TB of sensitive data allegedly stolen; Deloitte denies claims.
RECOPE Ransomware Attack: Manual operations in Costa Rica after ransomware disrupted fuel distribution systems.
ENGlobal Corporation Attack: US contractor targeted, leading to data encryption and limited IT access.
BT Group Attack: Black Basta ransomware group claimed 500GB of stolen data.
HUR DDoS on Gazprombank: Ukrainian retaliation aimed at disrupting Russian financial operations.
Stoli Group Attack: August ransomware attack caused operational disruption, leading to Chapter 11 bankruptcy.
Vulnerabilities and Patches Windows NTLM Capture Flaw: Zero-day affecting Windows versions up to 11; unofficial micropatch available from 0patch.
Progress WhatsUp Gold RCE Vulnerability (CVE-2024-8785): Exploit enables registry modification and code execution; update to version 24.0.1 to mitigate risks.
Veeam Vulnerabilities (CVE-2024-42448 & CVE-2024-42449): Critical flaws in Service Provider Console allow code execution and NTLM hash theft; patches released.
Threat Intelligence Reports Akira Ransomware Analysis: Check Point’s research reveals Rust-based ESXi variant targeting hypervisors with unique design features.
China’s Salt Typhoon Attacks: FBI and CISA report ongoing telecom targeting by China-affiliated actors, exfiltrating metadata and communications.
U.S. Organization Targeted in China: DLL-sideloading with tools like Impacket and PowerShell for data exfiltration over four months.
Secret Blizzard Espionage: Russian Turla group exploiting infrastructure of six other threat actors for intelligence collection in South Asia.
 

Read full article:https://research.checkpoint.com/2024/9th-december-threat-intelligence-report/

Disclaimer: The above summary has been generated by an AI language model

Source: Checkpoint

Published on: December 9, 2024

Leave a Reply

Your email address will not be published. Required fields are marked *