Week in Overview(31 Oct-7 Nov)
it is crucial for organizations and individuals to prioritize remediation and patching efforts to safeguard their systems and data. The following key findings highlight the importance of proactive measures to mitigate risks associated with various vulnerabilities and threats:
- AsyncRAT Malware Campaign Analysis
- VMware vCenter Server Critical Remote Code Execution and Information Disclosure Vulnerabilities
- VMware, Microsoft, and SolarWinds Critical Vulnerabilities
- bypass antivirus (AV) software by using the Windows “Developer Mode” features
- Multiple Data Breaches and Dark Web Sales Involving Japanese IT Firm, CPanel, New Zealand Credit Cards, and LinkedIn Data
- Blind Eagle APT-C-36 Campaign Utilizing Amadey and AsyncRAT
- Pikabot Malware Campaign Targeting Italy
- Trending exploit: Atlassian Confluence servers due to a vulnerability identified as CVE-2023-22518
- tactics, techniques, and procedures (TTPs) used by threat actors in an intrusion related to the WS_FTP vulnerability, tracked as CVE-2023-40044.
