Home » Weekly Intelligence Summary » Weekly Intelligence Summary 14 Feb - 21 Feb 2019

× Share this Presentation

Facebook
Twitter
Email
LinkedIn

First Name

Last Name

Job Title

Company

Country

State

Thank you!

Error - something went wrong!

Weekly Intelligence Summary 14 Feb - 21 Feb 2019

February 22, 2019

Share this Report
Facebook
Twitter
Email
LinkedIn

Highlights from the week include: A new financially motivated threat actor advertised up to 841 million data records for sale on Dream Market; “APT-C-36” has targeted multiple Colombian sectors, including government, in an ongoing cyber espionage campaign; and the “Gandcrab” ransomware has been delivered through the Kaseya VSA plug-in vulnerability.

Previous Report

Weekly Intelligence Summary 22 Feb - 01 Mar 2019

Highlights from the week include: The fifth substantial ransomware report produced in two weeks described h...

Next Report

Weekly Intelligence Summary 07 Feb - 14 Feb 2019

Highlights from the week include: the exploitation of two zero-day vulnerabilities in Apple’s iOS platform,...

Want these
Threat Intelligence reports sent straight to your inbox?

Subscribe below!

First Name

Last Name

Company

Country

State- optional

Job Title

Thank you!

Error - something went wrong!

Most Recent Flipbooks

Weekly Intelligence Summary 24 Jan 2020

Weekly Intelligence Summary 14 Feb - 21 Feb 2019

Previous Report

Next Report

Most Recent Flipbooks

During the past 12 months, Digital Shadows has observed a rise in “mobile malware”―the use of malware targeting mobile devices/operating systems (OS)―as well as legitimate apps used maliciously.

The cyber-extortion landscape has shown real signs of strength and advancement in the past three months...

In the spotlight this week: Iranian cyber response neither impossible nor guaranteed

Despite a decline in overall exploit kit activity during 2018 and 2019, several new variants have emerged with new techniques and a geographical focus, making them likely to retain their threatening p

“Lazarus Group” has been linked to a new trojanized Mac OS X application, demonstrating the threat group’s preference for employing OS X malware over the past two years.

The Digital Shadows Intelligence Team discusses the risks of information exposure by Internet users, challenging contemporary thinking about standard security practices.

In the spotlight this week is a technique that enables the bypass of security products to initiate ransomware infections.

Digital Shadows reviewed nation-state–linked advanced persistent threat (APT) activity in 2019, and highlighted several trends. Some are likely to continue into 2020, and will be supplemented by ...

Multiple reports of successful ransomware attacks have highlighted the risk to organizations of all sizes but, despite the media attention, other extortion tactics are being overlooked.

A string of data breach incidents affecting perceptively smaller organizations this week has outlined the need for all companies, regardless of size, to take a proactive security stance in preference

In the spotlight this week: A card skimming operation targeted the online retailer First Aid Beauty and evaded notice for months.

In the spotlight this week: Russia-linked threat group “Turla” was reported to be using cyber-attack tools associated with Iran-linked threat group “APT34”, in conjunction with Turla’s own tools.

In the spotlight this week is the “Simjacker” exploit, publicly disclosed in September 2019 and now potentially affecting entities across 29 countries.

In the spotlight this week is the Iran-linked threat group “APT35”, which took aim at the email accounts of political entities in the United States and prominent Iranians living outside Iran.

In the spotlight this week is a variety of new attack methods demonstrated by “Magecart Five”. The threat group is probably testing them out, and will highly likely implement the most successful metho

In the spotlight this week is a newly identified threat group named Tortoiseshell, which has reportedly conducted supply-chain cyber attack campaigns against 11 IT providers in Saudi Arabia.

The Iran-linked cyber-threat group “Cobalt Dickens” targeted 60-plus universities worldwide with a phishing campaign designed to capture credentials. Higher-education institutions have been popular...

In the spotlight this week: Following reports that “APT3” used Equation Group tools prior to their public leak by the “Shadow Brokers” in 2016, cyber security researchers have provided additional ...

In the spotlight this week: A surge in financially motivated cyber-attack campaigns has been attributed to “Silence”, which is a probably Russian cybercriminal group.

Weekly highlights: A new campaign by the “Gamaredon” group may have targeted Ukrainian government bodies, a new ransomware variant dubbed Nemty was likely distributed through compromised remote desk