This week’s briefing covers:

00:00 - Intro and Situational Awareness

3:13 – Microsoft November Patch Tuesday

8:00 – APT Actors Embed Malware within macOS Flutter
Applications

10:16 – KTA162 (Volt Typhoon) rebuilding KV-Botnet

11:38 – 'Nam3L3ss' Releases MOVEit Data

Dive deeper:

Kroll’s Monthly Threat Intelligence Spotlight Report: https://www.kroll.com/en/insights/publications/cyber/threat-intelligence-reports/cti-spotlight-trends-report

Kroll’s Q2 2024 Threat Landscape Report: https://www.kroll.com/en/insights/publications/cyber/threat-intelligence-reports/q2-2024-threat-landscape-report-threat-actors-ransomware-cloud-risks-accelerate

Playlist of Kroll's Weekly Cyber Threat Intelligence Briefings: Cyber Threat Intelligence Briefings

Kroll Cyber Blog: https://www.kroll.com/en/insights/publications/cyber

Kroll Cyber Threat Intelligence: https://www.kroll.com/en/services/cyber-risk/managed-security/threat-intelligence-services

Kroll Threat Intelligence Reports: https://www.kroll.com/en/insights/publications/cyber/threat-intelligence-reports

Kroll Responder MDR: https://www.kroll.com/en/services/cyber-risk/managed-security/kroll-responder

#krollcyber #threatintelligence #cyberthreats

Social:

• Pull headlines and replace in this template:

Each week our cyber threat intelligence team reports on the latest trends they observe from the trenches. This week we covered:

• VMWare vCenter Flaw Allows Remote Code Execution
• LUMMASTEALER Delivered Via PowerShell Social Engineering
• Generative AI Malware Used in Phishing Attacks
• Ransomware Roundup
• Watch the full briefing here: