QuoIntelligence’s Weekly Intelligence Snapshot for the week of 8 – 15 July 2020 is now available!
CYBER
Vulnerability
Industries impacted: ANY, Information Technology
In its July Patch Tuesday, Microsoft released security patches for 123 vulnerabilities affecting several products including Internet Explorer, Edge, ChakraCore, Windows, Office, Web Apps, .NET Framework, and Windows Defender. Of the vulnerabilities, 18 are critical in severity and remotely exploitable, while 105 are rated as important in severity. Further, the release addressed a critical remote code execution (RCE) vulnerability in its Windows Domain Name System (DNS) servers.
Threat Actor
Industries impacted: Financials, Information Technology
Researchers from ESET observed a new campaign from Evilnum, an APT group, targeting financial technology companies. Additionally, the researchers identified the group has now integrated tools from the Golden Chickens Malware-as-a-Service into at least this attack campaign.
Rollups
- Adobe, Cisco, and SAP Security Releases
- Cybercriminals Target Latin America and Europe with Family of Banking Trojans
- Zoom Patches Remote Code Execution Vulnerability in Zoom Client for Windows 7 and Older
GEOPOLITICS
Industries impacted: Government
Iran and China reportedly finalized a proposed agreement on a partnership between the two countries, especially within the security and economic sector. The agreement, obtained by The New York Times, includes Chinese investments of billions of dollars into industries such as banks, energy, transportations, and telecommunication throughout Iran.
Rollups
- President Trump Reportedly Confirms US Conducted Cyberattack Against Russia in 2018
- Germany’s Domestic Intelligence Agency Releases Annual Report
OUTLOOK
17 July – Special European Council Meeting on Recovery Plan for COVID-19 Crisis and Long-term EU Budget