CWE Releases Top 25 Most Dangerous Software Weaknesses for Security Community
Threat Intelligence

CWE Releases Top 25 Most Dangerous Software Weaknesses for Security Community

Posted on June 29, 2022

By Bradford Regeski, RH-ISAC Cyber Threat Intel Analyst

Summary The Common Weakness Enumeration (CEV) organization has released their 2022 Top 25 Most Dangerous Software Weaknesses list. This list demonstrates the most common and impactful software weaknesses occurring during the year of 2022. To create the list, the CWE Team leveraged Common Vulnerabilities and Exposures (CVE) data found within the National Institute of Standards and Technology (NIST) National Vulnerability…

Read More
Map of the world showing Asia
Threat Intelligence

Newly Discovered Chinese APT Operating Cyberespionage Campaign Against APAC Organizations Since 2013

Posted on June 10, 2022

By Lee Clark, Cyber Threat Intelligence Analyst & Writer

Context On June 9, 2022, SentinelLabs disclosed technical details of a new Chinese-speaking cyberespionage group designated Aoqin Dragon. According to researchers at SentinelLabs, the group has been operating a cyberespionage campaign against government, education, and telecommunication organizations in Southeast Asia and Australia from at least 2013 to the present. SentinelLabs researchers also assessed with moderate…

Read More
Global communication network
Threat Intelligence

Federal Joint Advisory Warns of Chinese Threat Actors Targeting Telecommunications and Network Service Providers

Posted on June 8, 2022

By Lee Clark, Cyber Threat Intelligence Analyst & Writer

Context On the evening of June 7, 2022, the United States National Security Agency (NSA), the Cybersecurity and Infrastructure Security Agency (CISA), and the Federal Bureau of Investigation (FBI) released a joint advisory detailing the tactics, techniques, and procedures (TTPs) used by unspecified Chinese state-backed threat actors to target unspecified telecommunication and network service organizations…

Read More
Skull with ransomware key
Threat Intelligence

Joint Federal Advisory on Karakurt Data Extortion Group Technical Details

Posted on June 1, 2022

By Lee Clark, Cyber Threat Intelligence Analyst & Writer

Context On June 1, 2022, the United States Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigations (FBI), the Treasury Department, and the Financial Crimes Enforcement Network released a joint advisory with technical details and indicators of compromise for the Karakurt data extortion group. Karakurt is an advanced persistent threat (APT) group focused…

Read More
zero day image
Risk Management

Microsoft Releases Mitigation Measures for Active MSDT Exploit

Posted on May 31, 2022

By Bradford Regeski, RH-ISAC Cyber Threat Intelligence Analyst

Context Microsoft has shared mitigation measures, which are included below, to block attacks exploiting the flaw, designated CVE-2022-30190, while a patch is being developed. Microsoft‘s entry for CVE-2022-30190 indicates it affects MSDT on all versions of Windows and Windows Server and has detected exploitation in the wild. The remote code execution vulnerability exists when Microsoft Support Diagnostic Tool (MSDT) is called using the…

Read More