WEEKLY TOP TEN | MAY 13, 2022 14:02 GMT
Our Threat Operations and Intelligence team compiles a daily digest of new cybersecurity threats from around the Internet. This top 10 has been culled from the 40+ unique stories we found relevant over the week, ranked by highest risk:
- Security Researchers Develop Proof of Concept Exploits for F5 BIG-IP Vulnerability CVE-2022-1388
https://securityaffairs.co/wordpress/131102/hacking/f5-big-ip-exploit-code.html - Chinese Threat Actor Red Menshen APT Leveraging Berkeley Packet Filter (BPF) To Hide Traffic in Multiyear Campaign
https://www.csoonline.com/article/3659802/stealthy-linux-implant-bpfdoor-compromised-organizations-globally-for-years.html - Gootloader Payload Dropper Using SEO Poisoning in Campaign
https://thedfirreport.com/2022/05/09/seo-poisoning-a-gootloader-story/ - Stealthy NerbianRAT Deploying via COVID-19 Phishing Campaign
https://www.proofpoint.com/us/blog/threat-insight/nerbian-rat-using-covid-19-themes-features-sophisticated-evasion-techniques - Raspberry Robin Worm Propagating via Malicious USB Drive Campaign
https://threatpost.com/usb-malware-targets-windows-installer/179521/ - New Saintstealer Found Using Similar C2 Infrastructure As Other Stealers
https://thehackernews.com/2022/05/experts-detail-saintstealer-and-prynt.html - Researchers Discover Discord-centric “KurayStealer” Malware
https://blog.cyble.com/2022/05/12/a-closer-look-at-eternity-malware/ - Eternity Malware Toolkit Being Built and Distributed via Telegram Channel
https://threatpost.com/malware-discord-webhooks/179605/ - Iranian Threat Actor COBALT MIRAGE APT Performing Financially-motivated Ransomware Attacks in Israel, Europe and United States
https://www.secureworks.com/blog/cobalt-mirage-conducts-ransomware-operations-in-us - Cheap, But Effective DarkCrystal RAT Sold Online For Low Price of $5
https://securityaffairs.co/wordpress/131122/cyber-crime/dcrat-cheap-rat.html
