Summary

In November 2024, Solar, the cybersecurity arm of Russian state-owned telecom company Rostelecom, detected a malicious campaign targeting Russian IT organizations. The activity was tracked under the name Erudite Mogwai.The malware in question, LuckyStrike Agent, is a previously undocumented threat that has been linked to the notorious Space Pirates threat actor.

This latest development underscores the ongoing cat-and-mouse game between cybercriminals and cybersecurity professionals.As the threat landscape continues to evolve, it's essential for organizations and governments to stay vigilant and proactive in detecting and mitigating such malicious activities. International cooperation and information sharing are critical in this regard, as highlighted by Solar's efforts in monitoring and combating Erudite Mogwai.

Summary

Understanding the Newly Added VulnerabilitiesThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) has identified two new security flaws impacting Adobe ColdFusion and Oracle Agile Product Lifecycle Management (PLM).

These added vulnerabilities are now listed in the Known Exploited Vulnerabilities (KEV) catalog, indicating active exploitation.One of the vulnerabilities, CVE-2017-3066, carries a critical CVSS score of 9.8, making it an extremely high-risk threat. This deserialization vulnerability highlights the potential for serious attacks on software applications that rely on this functionality.Organizations affected by these vulnerabilities must prioritize prompt patching and updates to protect their systems and data from potential exploitation.

CISA's swift action serves as a reminder of the importance of staying vigilant in today's rapidly evolving cybersecurity landscape.