Weekly Intelligence Summary

Weekly Intelligence Summary 02 May - 09 May 2019

The China-affiliated threat group “APT3” has recently been said to develop its own version of a tool that was likely created by the United States NS) prior to being leaked by the “ShadowBrokers”.

• Facebook
• Twitter
• Email
• LinkedIn

Weekly Intelligence Summary 25 Apr - 02 May 2019

Two separate campaigns draw similarities in the use of uncommon and underreported social engineering and delivery mechanisms to compromise a user’s machine with information stealing malware.

• Facebook
• Twitter
• Email
• LinkedIn

Weekly Intelligence Summary 18 Apr - 25 Apr 2019

In the spotlight: Information about APT34, including victim data, personally identifiable information belonging to the group’s alleged members, and the group’s tools, has been leaked on Telegram.

• Facebook
• Twitter
• Email
• LinkedIn

Weekly Intelligence Summary 11 Apr - 18 Apr 2019

In the spotlight: An unidentified threat actor has obtained data from various personal Outlook, MSN, and Hotmail email accounts by compromising a Microsoft customer support account.

• Facebook
• Twitter
• Email
• LinkedIn

Weekly Intelligence Summary 04 Apr - 11 Apr 2019

“Fin6” has reportedly widened its range of attacks to include ransomware, potentially inciting the threat group to extend targeting beyond retail and hospitality entities.

• Facebook
• Twitter
• Email
• LinkedIn

Weekly Intelligence Summary 28 Mar - 04 Apr 2019

Highlights from the week include: “APT33” targeting American and Saudi engineering and manufacturing organizations, Earl Enterprises restaurants being affected by point of sale (POS) malware, and ...

• Facebook
• Twitter
• Email
• LinkedIn

Weekly Intelligence Summary 21 Mar - 28 Mar 2019

In the spotlight this week, the server of device manufacturer ASUS was compromised by an unknown threat actor, pushing backdoor malware to at least 500,000 users’ devices. Despite the scale, this wa..

• Facebook
• Twitter
• Email
• LinkedIn

Weekly Intelligence Summary 14 Mar - 21 Mar 2019

Highlights from the week include: Threat group “APT-C-27” exploiting a flaw in WinRAR software to target users in the Middle East, a fourth batch of breached data offered for sale on the dark web by

• Facebook
• Twitter
• Email
• LinkedIn

Weekly Intelligence Summary 07 Mar - 14 Mar 2019

Highlights from the week include the targeting of universities’ research facilities by Chinese threat group “APT40”, the attribution of a data breach against a Singapore healthcare center in 2018 to t

• Facebook
• Twitter
• Email
• LinkedIn

Weekly Intelligence Summary 28 Feb - 07 Mar 2019

This week the team looks at Fin6, who has begun regularly targeting card-not-present data on e-commerce websites. Other highlights from this week include Topps disclosing a data breach incident linked

• Facebook
• Twitter
• Email
• LinkedIn

Weekly Intelligence Summary 22 Feb - 01 Mar 2019

• Highlights from the week include: The fifth substantial ransomware report produced in two weeks described how D-Link NAS devices delivered the Cr1ptT0r ransomware; an unknown North Korean threat act

• Facebook
• Twitter
• Email
• LinkedIn

Weekly Intelligence Summary 14 Feb - 21 Feb 2019

Highlights from the week include: A new financially motivated threat actor advertised up to 841 million data records for sale on Dream Market; “APT-C-36” has targeted multiple Colombian sectors, inclu

• Facebook
• Twitter
• Email
• LinkedIn

Weekly Intelligence Summary 07 Feb - 14 Feb 2019

• Facebook
• Twitter
• Email
• LinkedIn

Weekly Intelligence Summary 31 Jan - 07 Feb 2019

Highlights from the week include: a spam campaign targeting American users, distributing the “Trickbot” banking trojan; Vietnamese threat group “OceanLotus” deploying a new custom downloader; and ...

• Facebook
• Twitter
• Email
• LinkedIn

Weekly Intelligence Summary 24 Jan - 31 Jan 2019

In the spotlight this week, security researchers have published details on “APT39”, a suspected Iran-associated cyber espionage group.

• Facebook
• Twitter
• Email
• LinkedIn

Weekly Intelligence Summary 17 Jan - 24 Jan 2019

Highlights from the week include: DarkHydrus were observed using a new method to communicate with command and control servers, technology and social networking companies continue to remove ...

• Facebook
• Twitter
• Email
• LinkedIn

Weekly Intelligence Summary 10 Jan - 17 Jan 2019

Highlights from the week include: The threat group “TA505” has been attributed with three new phishing campaigns from November and December 2018; a wave of Domain Name System (DNS) hijacking attacks t

• Facebook
• Twitter
• Email
• LinkedIn

Weekly Intelligence Summary 03 Jan - 10 Jan 2019

Highlights from the week include: a new data skimming campaign attributed to the threat group “Magecart”, a security researcher’s phishing-campaign tool that can bypass two-factor authentication (2FA)

• Facebook
• Twitter
• Email
• LinkedIn

Weekly Intelligence Summary 13 Dec - 20 Dec 2018

Highlights from the week include: the “FruityArmor” and newly identified “SandCat” advanced persistent threat (APT) groups exploiting a Microsoft Windows zero-day vulnerability; ...

• Facebook
• Twitter
• Email
• LinkedIn