Welcome to the July 2023 Threat Highlight Report!
This month's report covers a range of cybersecurity news, including the exploitation of Ivanti EPMM, ransomware incidents, and notable highlights in brief.
July report covers
- Exploitation of Ivanti EPMM resulting in the compromise of government departments in Norway
- Ransomware incidents involving newcomers BigHead and the impersonation of Sophos
- Driver loopholes
- Exploitation of Citrix products
- TeamsPhisher tool that is being ignored by Microsoft
- Examination of the hacktivist landscape
- Statistics relating to the most active threat groups throughout July
The report examines the hacktivist landscape and includes statistics relating to the most active threat groups throughout July.
Here’s a bit more detail:
1. Exploitation of Ivanti EPMM: This refers to a cyber attack that resulted in the compromise of government departments in Norway. The attack was carried out by a state-backed sophisticated threat actor.
2. Ransomware incidents: The report covers several ransomware incidents, including those involving newcomers BigHead and the impersonation of Sophos. The report also covers the use of malvertising and a 2-for-1 incident at cosmetics brand Estée Lauder.
3. Driver loopholes: The report discusses loopholes in drivers that can be exploited by attackers to gain access to systems.
4. Exploitation of Citrix products: The report highlights active exploitation of two new vulnerabilities in two different Citrix products, namely ShareFile and NetScaler (ADC).
5. TeamsPhisher tool: This is a phishing tool that is being ignored by Microsoft. The report discusses the potential risks associated with this tool.
6. Hacktivist landscape: The report examines the current state of hacktivism and discusses recent hacktivist activities.
7. Statistics on threat groups: The report includes statistics on the most active threat groups throughout July, including information on their tactics, techniques, and procedures.
Stay informed about the latest cybersecurity threats and trends by reading our report!
Be Ahead of the Game!
Stay informed about the latest cybersecurity threats and trends by subscribing to WithSecure's monthly threat highlights report!
Our comprehensive report provides an overview of last month's cybersecurity news, the changing threat landscape, and relevant advice.
Don't miss out on valuable insights - fill out the form to receive our report now!