QuoIntelligence’s Weekly Intelligence Snapshot for the week of 11 – 17 Feb is now available! Find a summary here and subscribe to our mailing list below if you want to receive regular updates from us!
Cyber
Incident
Industry impacted: Information Technology
On 15 February, the French National Agency for the Security of Information Systems (ANSSI) declassified a report detailing an allegedly Russian government-linked attack campaign against French entities, operating from as early as 2017 through late 2020. ANSSI attributed the attack campaign to the Sandworm group – a Russian military-linked advanced persistent threat (APT) actor known for its destructive attack campaigns. Furthermore, according to the ANSSI, the campaign primarily targeted information technology providers, such as web hosting providers, and stealthily installed web shell backdoors. With Sandworm’s potential exfiltration of sensitive data over a three-year time span, the full information security impact of this specific incident remains to be seen.
Threat Actor
French and Ukrainian authorities conducted a joint operation and arrested suspects in Ukraine affiliated with the Egregor ransomware group. Egregor, which operates as a Ransomware-as-a-Service (RaaS), was used in hundreds of attacks since it was created in late 2020.
Rollups
Industry impacted: Communication Services, Financials, Government, Industrials, Information Technology
- Yandex Discovers Employee Selling User Mailbox Access to Third-Parties
- Singtel and Others Compromised Through Zero-Day In Accellion’s File Transfer Appliance
- Fortinet Researchers Discover Phishing Campaign Delivering New Bazar Trojan Variant
- US Government Indicts Three Alleged North Korean Government Cyber Operators, Releases Multiple Technical Malware Reports of Campaigns Attributed to North Korea-Linked Lazarus Group
- Major Law Firm, Jones Day, Hit By Clop Ransomware
Geopolitics
Industry impacted: Communication Services, Information Technology
Technology companies and governments alike are increasing their efforts to better regulate the Internet by enacting new regulations to better ensure the safety of the Internet, increase transparency, data protection, and fair practices online. Consequently, new Internet governance approaches are trending towards more regulated frameworks, increasing state intervention. However, there is no previous evidence on the impact these novel approaches could have on user behavior online, business, and freedom of speech.
Rollups
Industry impacted: Government, Health Care, Materials
- Brexit Trade Restrictions and Regulations Cause Challenges to Small UK Firms
- South Korea’s National Intelligence Service Says North Korea-linked Threat Actors Attempted to Steal Vaccine Data from Pfizer
- Myanmar Government Sites Defaced By Hacktivist Attacks
- China to Potentially Limit Rare Earth Exports to the US
