Actively exploited in the wild, linked to Water Hydra (DarkCasino) campaigns targeting financial traders. No public patch as of early week – apply Microsoft’s latest Defender ASR rules & disable WebClient service if feasible.
| Target | Attack Vector | Priority | |--------|----------------|----------| | Ivanti VPN appliances | Chained auth bypass + command injection | 🔴 Critical | | Microsoft Outlook (local) | New phishing campaigns using malicious .ics calendar invites | 🟠 High | | Apache ActiveMQ (CVE-2023-46604) | Continued ransomware prep – Behaves like HelloKitty variant | 🟡 Medium-High | | Zoho ManageEngine (multiple CVEs) | Targeted credential harvesting in IT services sector | 🟡 Medium | 0-day and Hitlist Week -02-21-2024-
#350, alongside a large volume of "Hitlist" digital scans of older titles. Key highlights included Marvel's Edge of Spider-Verse #1 and DC's #144, while indie publishers launched titles like Cemetery Kids Don't Die #1. For the full list of releases, see Actively exploited in the wild, linked to Water