QuoIntelligence’s Weekly for 1 – 7 October 2020 is now available!

You can find below a summary for our Weekly Intelligence Snapshot, providing insight and analysis into this week’s major cyber and geopolitical events.
Subscribe to our mailing list to receive it straight in your inbox, or inquire today to receive a free trial of our full Weekly Intelligence Product, which includes analyst comments, MITRE ATT&CK tags, IOCs, and more!


Industry impacted: Consumer Discretionary

  • Recently, data exfiltrated from Toyota Central Europe appeared on a popular website for hosting leaked code. After careful analysis, QuoIntelligence determined that the leak does not impact our customers. In addition, the leak, which appears to be due to Toyota Central Europe using default credentials of a SonarQube instance, does not include credentials or configuration files.

Current Threat
Industry impacted: Government

  • Researchers at Kaspersky uncovered a new Unified Extensible Firmware Interface (UEFI) bootkit framework dubbed “MosaicRegressor” used at least between 2017 and 2019 in targeted cyberespionage attacks against non-governmental organizations (NGOs) based in Africa, Europe, and Asia. The MosaicRegressor is a modular and multi-stage malware framework that can download, install and execute payloads, and establish persistence through an interaction with the victim system at a low level. 

Industry impacted: ANY, Communication Services, Government

  • CISA Warn of Cyberattacks Using a New Malware Variant dubbed SLOTHFULMEDIA
  • XDSpy: Newly Discovered Threat Group Stayed Undetected for Close to a Decade
  • International Maritime Organization (IMO) Targeted in Cyberattacks
  • Unnamed Threat Actor Leverages the Current Azerbaijan and Armenia Conflict to Deliver the PoetRAT



    Industry impacted: ANY, Communication Services, Government

    • EU Launches Legal Action Against the UK For Breaching Withdrawal Agreement 
    • EUROPOL Releases Internet Organized Crime Threat Assessment (IOCTA) 2020 
    • Germany Reportedly Preparing Legislation to Exclude Huawei as 5G Supplier
    • EU Court Rules Against Indiscriminate Collection of Communications Data

    Industry impacted: ANY

    • ENISA European Cyber Security Month

      Would you like to have access to the full report? Click on the link below to learn more about our Weekly Intelligence Snapshot subscription.