SOC Prime Threat Bounty Digest — October 2023 Results
Discover what’s new in SOC Prime’s Threat Bounty program and the October results. Threat Bounty Content Submissions We are happy…
Threats
Remcos RAT Detection: UAC-0050 Hackers Launch Phishing Attacks Impersonating the Security Service of Ukraine
CERT-UA researchers have recently published a novel heads-up that covers ongoing phishing attacks against Ukraine involving distribution of Remcos RAT.…
CVE-2023-47246 Detection: Lace Tempest Hackers Actively Exploit a Zero-Day Vulnerability in SysAid IT Software
This November, a set of new zero-days in the popular software products are emerging in the cyber domain, like CVE-2023-22518…
What Is Threat-Informed Defense?
Organizations have to constantly struggle with an avalanche of threats while relying on a straightforward and proactive method to dynamically…
Agonizing Serpens Attack Detection: Iran-Backed Hackers Target Israeli Tech Firms and Educational Institutions
The increasing menace posed by nation-state actors continuously increases with new sophisticated attack methods adopted by APT collectives and a…
China-Backed APT Attack Detection: Withstanding the Escalating Sophistication & Maturity of Chinese State-Sponsored Offensive Operations Based on the Recorded Future’s Insikt Group Research
In the last five years, Chinese nation-backed offensive campaigns have evolved into more sophisticated, stealthy, and well-coordinated threats as compared…
CVE-2023-22518 Detection: Exploitation of a New Critical Vulnerability in Atlassian Confluence Leads to Cerber Ransomware Deployment
Just over a month after the disclosure of a critical Confluence zero-day tracked as CVE-2023-22515, a novel vulnerability emerges in…
CVE-2023-46604 Detection: HelloKitty Ransomware Maintainers Exploits RCE Vulnerability in Apache ActiveMQ
At the turn of November, hot over the heels of disclosing CVE-2023-43208, the Mirth Connect vulnerability, another security bug comes…
CVE-2023-43208 Detection: NextGen’s Mirth Connect RCE Vulnerability Exposes Healthcare Data to Risks
Vulnerabilities affecting popular software expose thousands of organizations in diverse industry sectors to severe threats. October has been rich in…
Detection Content to Address Attacker Techniques Covered in the “Domain of Thrones: Part I” Research
Offensive forces continuously look for new ways to gain access to the domain environment and sustain their presence by leveraging…