--- TLP:WHITE ---
News
− Mandiant 2023 M-Trends Report Provides Factual Analysis of Emerging Threat Trends

n a year dominated by kinetic/cyber war in Ukraine, North Korea
doubles down on cryptocurrency thefts, China and Iran continue to take
advantage, and a new form of personal intimidation of company personnel
emerges.
https://www.securityweek.com/mandiant-2023-m-trends-report-provides-factual-analysis-of-emerging-threat-trends/
   

− Lazarus Hacker Group Evolves Tactics, Tools, and Targets in DeathNote Campaign

The North Korean threat actor known as the Lazarus Group has been
observed shifting its focus and rapidly evolving its tools and tactics
as part of a long-running activity called DeathNote.
https://securelist.com/the-lazarus-group-deathnote-campaign/109490/
   

− Systematicity and intensity of cyberattacks against Ukraine remain high — CIP-UA

CIP-UA reports decrease in the number of attacks during Q12023 by pro-russian groups during Q1 2023, targeting the commercial and financial sectors, the Government and local authorities, and at the security and defense sectors. During the intensity of attacks on the energy sector and the mass media remains at the same level as before.
https://cip.gov.ua/en/news/systematicity-and-intensity-of-russia-s-cyberattacks-remain-high-report
   


Vulnerabilities
− Severe Android and Novi Survey Vulnerabilities Under Active Exploitation

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has
added two vulnerabilities to its Known Exploited Vulnerabilities (KEV)
catalog, based on evidence of active exploitation.
https://www.cisa.gov/news-events/alerts/2023/04/13/cisa-adds-two-known-exploited-vulnerabilities-catalog
   

− Google Uncovers APT41's Use of Open Source GC2 Tool to Target Media and Job Sites

A Chinese nation-state group targeted an unnamed Taiwanese media
organization to deliver an open source red teaming tool known as Google
Command and Control (GC2) amid broader abuse of Google's infrastructure
for malicious ends.
https://services.google.com/fh/files/blogs/gcat_threathorizons_full_apr2023.pdf
   



Community News

− The Resilience of the Internet in Ukraine - One Year On

In our earlier analysis of Ukraine back in March 2022, we looked at
factors that contributed to the resilience of the country's Internet
since the outbreak of the war. A little over a year on, we draw on data
from RIPE Atlas and RIPE RIS to investigate what has changed.
https://labs.ripe.net/author/emileaben/the-resilience-of-the-internet-in-ukraine-one-year-on/
 

--- TLP:WHITE ---