In the spotlight this week: An indiscriminate malicious cryptocurrency campaign is targeting entities in China using fileless malware techniques, readily available PowerShell exploit tools, and variants of the open-source cryptocurrency miner “XMRig”.
Weekly highlights come from the financially motivated “FIN8” threat group and their attempt to compromise a hospitality organization, threat actors who are targeting a vulnerability in a newly detected spam campaign, and the “MuddyWater” threat group, which has been targeting a new vulnerability to attack government and telecommunications entities in the Middle East.
Error - something went wrong!
Your Practical Guide to Reducing Digital RiskGet Your Copy!
Most Recent Flipbooks
Weekly Intelligence Summary 08 Aug - 15 Aug 2019
In the spotlight this week are details of ongoing sextortion campaigns which consistently use unsophisticated tactics and techniques to target users indiscriminately.
Weekly Intelligence Summary 01 Aug - 08 Aug 2019
Weekly highlights focus on: the Russia-associated “APT28” threat group targeting Internet of Things (IOT) devices to access corporate networks, ten new information-stealing trojans targeting financial
Weekly Intelligence Summary 25 Jul - 01 Aug 2019
Weekly highlights include: Capital One reported a data breach after an individual accessed an Amazon Web Services (AWS) server used by the organization, cyber espionage operations associated with Ch..
Weekly Intelligence Summary 18 Jul - 25 Jul 2019
Weekly Intelligence Summary 11 Jul - 18 Jul 2019
Entering the spotlight this week is the new “DoppelPaymer” ransomware, which bears resemblance to the “Indrik Spider”-associated “BitPaymer” ransomware.
Weekly Intelligence Summary 04 Jul - 11 Jul 2019
Two previously unseen malware variants have been attributed to the financially motivated “TA505” in attacks on various organizations worldwide, even as the threat group continues to rely on commonly u
Weekly Intelligence Summary 27 Jun - 04 Jul 2019
Weekly Intelligence Summary 20 Jun - 27 Jun 2019
A campaign dubbed Operation Soft Cell has been actively compromising telecommunications organizations since early 2017.
Weekly Intelligence Summary 13 Jun - 20 Jun 2019
In the spotlight this week is a cyber-threat campaign involving the abuse of legitimate features in Google Calendar.
Weekly Intelligence Summary 30 May - 06 Jun 2019
Weekly Intelligence Summary 23 May - 30 May 2019
Weekly Intelligence Summary 16 May - 23 May 2019
Weekly Intelligence Summary 09 May - 16 May 2019
Weekly Intelligence Summary 02 May - 09 May 2019
The China-affiliated threat group “APT3” has recently been said to develop its own version of a tool that was likely created by the United States NS) prior to being leaked by the “ShadowBrokers”.
Weekly Intelligence Summary 25 Apr - 02 May 2019
Two separate campaigns draw similarities in the use of uncommon and underreported social engineering and delivery mechanisms to compromise a user’s machine with information stealing malware.
Weekly Intelligence Summary 18 Apr - 25 Apr 2019
In the spotlight: Information about APT34, including victim data, personally identifiable information belonging to the group’s alleged members, and the group’s tools, has been leaked on Telegram.
Weekly Intelligence Summary 11 Apr - 18 Apr 2019
In the spotlight: An unidentified threat actor has obtained data from various personal Outlook, MSN, and Hotmail email accounts by compromising a Microsoft customer support account.
Weekly Intelligence Summary 04 Apr - 11 Apr 2019
“Fin6” has reportedly widened its range of attacks to include ransomware, potentially inciting the threat group to extend targeting beyond retail and hospitality entities.
Weekly Intelligence Summary 28 Mar - 04 Apr 2019
Highlights from the week include: “APT33” targeting American and Saudi engineering and manufacturing organizations, Earl Enterprises restaurants being affected by point of sale (POS) malware, and ...
Weekly Intelligence Summary 21 Mar - 28 Mar 2019