Welcome to the August 2023 Threat Highlight Report!

This month's report covers a range of cybersecurity news, including the exploitation of Ivanti EPMM, ransomware incidents, and notable highlights in brief.

August report covers

Monthly highlights
Ransomware trends and notable reports
Other notable highlights in brief, and threat data highlights
Latest news and trends in the cybersecurity industry
Newcomers in the ransomware space, such as "Cloak", "Metaencryptor" and "Ransomed"

Here’s a bit more detail:

1. New vulnerabilities in Ivanti products
Several vulnerabilities in Ivanti Endpoint Manager Mobile (EPMM), formerly known as MobileIron, that have been identified and exploited by a highly sophisticated threat actor. These vulnerabilities include CVE-2023-35078 and CVE-2023-35081, which allow for arbitrary unauthenticated file writes and can be used to upload and execute files and deploy web shells.

2. Exploitation of WinRAR vulnerabilities
One of two vulnerabilities in WinRAR is already being actively exploited, and the other is likely to be weaponized due to the prevalence of WinRAR.

3. Affiliate campaign installing a malicious "Digital Pulse" proxy
Affiliate campaign that installs a malicious "Digital Pulse" proxy, which can be used to intercept and modify web traffic.

4. Changing hacktivist landscape
Assessment of the changing hacktivist landscape, including the emergence of new groups and the tactics they are using.

5. Ransomware trends and statistics
Ransomware landscape, including statistics from known attacks, and highlights newcomers "Cloak", "Metaencryptor", and "Ransomed".

6. Threat data highlights
Overview of vulnerabilities that have been heavily discussed on social media, as well as VirusTotal trends and other threat data highlights.

Stay informed about the latest cybersecurity threats and trends.

Read report here!

Read our previous reports

March 2024

February 2024

January 2024

December 2023

November 2023

October 2023

September 2023

August 2023

July 2023

June 2023

May 2023

April 2023

March 2023

February 2023

January 2023

Be Ahead of the Game!

Stay informed about the latest cybersecurity threats and trends by subscribing to WithSecure's monthly threat highlights report!

Our comprehensive report provides an overview of last month's cybersecurity news, the changing threat landscape, and relevant advice.

Don't miss out on valuable insights - fill out the form to receive our report now!

First Name

Last Name

Business Email

Company *

Country *

About us

What's new

Latest updates

WithSecure uncovers Kapeka, a new malware with links to Russian nation-state threat group Sandworm

Understanding Continuous Threat Exposure Management

Understanding Cloud Security Posture Management

Understanding Your Attack Surface

Select your location and language

Europe

North America

Central and South America

Asia - Pacific

Global

Managed services

Co-Security services

Consulting

WithSecure™ Solutions

Outcome-based strategies

CISO Toolbox

Keep learning

WithSecure™ Security Outcomes

Watch & Read

Let us know

Featured article

Endpoint Protection Emotional Footprint

Become a partner

For current partners

Find a partner

Partner's corner

Importance of Data and Security Literacy for Salesforce Users

Disrupting the Kill Chain with WithSecure™ Cloud Protection for Salesforce

Self-help

Contact support

Important updates

WithSecure Support