S2 Ep2: Top 5 Threat Hunting Headlines - 22 Jan 2024

Top 5 Threat Hunting Headlines - 22 January 2024 1. MavenGate Attack Could Let Hackers Hijack Java and Android via Abandoned Libraries https://thehackernews.com/2024/01/hackers-hijack-popular-java-and-android.html https://blog.oversecured.com/Introducing-MavenGate-a-supply-chain-attack-method-for-Java-and-Android-applications/#maven-philosophy 2. North Korea's ScarCruft Attackers Gear Up to Target Cybersecurity Pros https://www.darkreading.com/threat-intelligence/north-koreasc-arcruft-attackers-target-cybersecurity-pros https://www.sentinelone.com/labs/a-glimpse-into-future-scarcruft-campaigns-attackers-gather-strategic-intelligence-and-target-cybersecurity-professionals/ 3. The Fake Fix: New Chae$ 4.1 Malware Hides in Driver Downloads https://www.hackread.com/fake-fix-chaes-4-1-malware-hides-driver-downloads/?web_view=true 4. Outlook Vulnerability Discovery and New Ways to Leak NTLM Hashes https://www.varonis.com/blog/outlook-vulnerability-new-ways-to-leak-ntlm-hashes 5. Bulletproof Hosting: A Critical Cybercriminal Service https://intel471.com/blog/bulletproof-hosting-a-critical-cybercriminal-service?&web_view=true ----- Follow Us! Twitter: https://twitter.com/CyborgSecInc LinkedIn: https://www.linkedin.com/company/cyborg-security/ YouTube: https://www.youtube.com/cyborgsecurity