×

Register to Access Intelligence Summary

First Name
Last Name
Job Title
Company
Country
State
Thank you!
Error - something went wrong!
   

Weekly Intelligence Summary 05 June 2020

June 5, 2020

The United States National Security Agency (NSA) released a cyber security advisory about the threat group “Sandworm”, likely a unit of the Russian GRU military intelligence agency. The NSA warned that Sandworm has been exploiting a vulnerability in the Exim Mail Transfer Agent (MTA) software since August 2019, which could allow the group to send specially crafted emails capable of executing remote commands on target devices. The group’s history includes allegedly conducting attacks aimed at the 2018 Winter Olympic Games in South Korea, as well as critical national infrastructure (CNI) in Ukraine. Given Sandworm’s recent activity, it is realistically possible that they will wage more attacks on large-scale events and organizations in the mid-term future (three months to a year).

Previous Report
Weekly Intelligence Summary 12 June 2020
Weekly Intelligence Summary 12 June 2020

The “Maze” group recently began collaborating with other ransomware operators by hosting their victims’ lea...

Next Report
Weekly Intelligence Summary 29 May 2020
Weekly Intelligence Summary 29 May 2020

A new ideologically motivated threat group, “CyberWare”, has been observed using ransomware in wiper attack...

×

Want these
Threat Intelligence reports sent straight to your inbox?

Subscribe below!

First Name
Last Name
Company
Country
State- optional
Job Title
Thank you!
Error - something went wrong!