⚡ THN Weekly Recap: Top Cybersecurity Threats, Tools and Tips [13 January]

Summary: This week’s cybersecurity recap highlights critical vulnerabilities, ongoing exploits, and legal actions against threat actors, emphasizing the importance of proactive security measures. Staying informed about these threats and implementing protective strategies is essential for individuals and organizations alike.

Threat Actor: UNC5337 | UNC5337
Victim: Ivanti | Ivanti

Key Point :

• A critical vulnerability in Ivanti Connect Secure appliances has been exploited as a zero-day, allowing for remote code execution.
• Microsoft is pursuing legal action against an unknown hacking group for abusing Azure API keys to generate harmful content.
• GFI KerioControl firewalls are under active exploitation due to a recently disclosed security flaw.
• New variants of EAGERBEE malware are targeting entities in the Middle East.
• Mustang Panda threat actor has been targeting Southeast Asian countries with customized PlugX backdoor attacks.
• The U.S. government has launched the Cyber Trust Mark for IoT devices to enhance consumer security.