0day And Hitlist Week 01102024 Work | Portable

Several ransomware groups updated their tooling in early January 2024, leveraging the vulnerabilities listed above.

A chain of an authentication bypass and a command injection flaw. 0day and hitlist week 01102024 work

| Incident Category | Key Vulnerability / Actor | Impact / Details | | :--- | :--- | :--- | | | Ivanti Connect Secure (CVE-2023-46805, CVE-2024-21887) | Two zero-days disclosed on Jan 10, enabling authentication bypass and remote command execution; exploited by Chinese state actor since Dec 2023. | | | Microsoft Windows SmartScreen (CVE-2024-21412) | A zero-day exploited by a DarkGate malware campaign using fake software installers and open redirects. | | Threat Actor "Hitlist" | Top Targeted Countries | France, Norway, Oman, US, UK | | | Top Targeted Sectors | Government, Technology, NGOs, Media, Financial | | | Most Active Ransomware | LockBit, 8Base, Akira, Black Basta, Medusa | | Major Incidents | Microsoft Corporate Breach | Russian state actor Midnight Blizzard hacked senior executive email accounts. | | | Calvià City Council Ransomware | €10M ($11M) ransom demand refused after attack disrupted services. | Several ransomware groups updated their tooling in early

The library filters out low-page-count files, corrupt PDFs, or duplicate formats using advanced smart lists. | | | Microsoft Windows SmartScreen (CVE-2024-21412) |

Automated checksum actions verify that day-zero digital prints or software packages are complete and untampered before release.