×

Register to Access Intelligence Summary

First Name
Last Name
Job Title
Company
Country
State
Thank you!
Error - something went wrong!
   

Weekly Intelligence Summary 04 June

June 4, 2021

The latest work of the notorious Russian state-associated “NOBELIUM” threat group is an email phishing campaign against multiple countries and sectors, victimizing human rights organizations, governments, and think tanks. The attacks, which began in January 2021, employed a sophisticated combination of legitimate tools and services (e.g. Google Firebase, Constant Contact) and customized malicious tools. NOBELIUM has seemingly soldiered on after its compromise of SolarWinds software in 2020, and continues to show great technical capability by carefully prioritizing targets and altering methods on the fly. NOBELIUM has repeatedly demonstrated the hallmarks of a well-resourced, state-sponsored, advanced persistent threat (APT) group, and will likely continue to mature and strike often in the mid-term future (3–12 months), despite best efforts to strengthen cyberspace government.

Previous Report
Weekly Intelligence Summary 11 June
Weekly Intelligence Summary 11 June

The notorious Russia-based ransomware group “REvil” (aka Sodinokibi) has been blamed for the latest high-pr...

Next Report
Weekly Intelligence Summary 28 May
Weekly Intelligence Summary 28 May

US President Joe Biden recently signed an executive order (EO) aimed at strengthening network security for ...

×

Want these
Threat Intelligence reports sent straight to your inbox?

Subscribe below!

First Name
Last Name
Company
Country
State- optional
Job Title
Thank you!
Error - something went wrong!