The December 2022 Fidelis Threat Intelligence Summary highlights key security news and telemetry, including a BlackHat Europe proof-of-concept “Aikido” attack that abuses NTFS junction points to trick vulnerable EDR tools into deleting arbitrary files at reboot, while noting Fidelis Endpoint is not affected due to protections that block symbolic links and junction behavior. It also covers updated detections and YARA rules for cracked Cobalt Strike, Royal ransomware targeting U.S. healthcare with large ransom demands, a Cisco IP phone zero-day affecting 7800/8800 series, a CryWiper data wiper masquerading as ransomware in Russia, and expanded details on the LastPass breach involving stolen customer vault backups. The report tracks top December vulnerabilities (including FortiOS CVE-2022-424

Join for free to read