Weekly Intelligence Snapshot – Week 26

Jun 25, 2020 | Intelligence Cables, Weekly Intelligence Snapshot

QuoIntelligence’s Weekly Intelligence Snapshot for the week of 17 – 24 June 2020 is now available!

Find the summary below and subscribe to our mailing list at the bottom if you want to receive Weekly summaries and other regular updates from us! Or inquire today to receive a free trial of our full Weekly Intelligence Product, which includes analyst comments, MITRE ATT&CK tags, IOCs, and more!

CYBER

Current Threat

Industries impacted: ANY

Researchers at CheckPoint discovered a new phishing campaign which utilizes the popular redirection mechanism in conjunction with the domain of a major brand to redirect victims to specific Office 365 phishing webpages. An unknown threat actor conducted this campaign and targeted various organizations within Europe, the Middle East, and Asia.

Threat Actor

Industries impacted: Government 

Researchers at ESET discovered a new cyber espionage campaign leveraging updated versions of the RC2FM and RC2CL backdoors previously attributed to InvisiMole to target “high-profile” institutions in Eastern Europe, including diplomatic and military institutions. Reportedly, the campaign started in late 2019 and continued to the date of the researcher’s publication.

Rollups

  • Akamai Reports its Largest Packet Per Second (PPS) Distributed Denial of Service (DDoS) Attack Yet

  • Oracle’s BlueKai Exposed Billions of Records of Users Web Tracking Data

  • FIN7: A New Point of Sale Malware Dubbed Pillowmint Targeting Credit Card Information

  • Australian Cyber Security Center Released an Advisory on “Sustained” Cyberattacks Targeting Australian Government Institutions and Businesses

  • Lazarus: COVID-19-themed Phishing Campaigns Targeting Companies in the US, UK, Japan, India, Singapore and South Korea

GEOPOLITICS

Industries impacted: Government

The National Fusion Center Association (NFCA) confirmed a security breach at Netsential, a Houston-based web service firm used by police departments, fusion centers, federal agencies, and other US law enforcement training and support centers. Distributed Denial of Secrets (DDoSecrets) used its Twitter account to announce the release of the files, dubbing them #BlueLeaks, for public access and attributed the data breach to hacktivist collective Anonymous.

Rollups

  • IMF Projects Global Growth at Minus 4.9 Percent in 2020
  • North Korea Reportedly Halted Military Exercises, De-Escalating Tensions with South Korea 

OUTLOOK

1 July – Russia to Hold Vote on Constitutional Amendments

1 July – Germany to Start EU Council Presidency 2020

 

About Our Weekly Intelligence Snapshot

Related posts:

Threat Intelligence Snapshot: Week 12, 2024 Threat Intelligence Snapshot: Week 11, 2024 Threat Intelligence Snapshot: Week 52, 2023