QuoIntelligence’s Weekly Intelligence Snapshot for the week of 4 – 10 Mar is now available! Find a summary here and subscribe to our mailing list below if you want to receive regular updates from us!

Cyber

Vulnerability

In this month’s Patch Tuesday security update, Microsoft includes patches for 86 vulnerabilities with the vendor rating 14 as critical and 75 as important in severity. QuoIntelligence released Warnings for all five zero-day flaws listed as having exploitation in the wild, including the four critical vulnerabilities in Exchange Server and the one critical vulnerability in Internet Explorer.

Threat Actor
Industry impacted: Communication Services, Financials, Government, Health Care, Utilities

Since last week when Microsoft released out-of-band security updates to address the four zero-day vulnerabilities within Microsoft Exchange Server, exploitation activity attempts have increased from a single known China-linked group to now include at least ten Advanced Persistent Threat (APT) actors. QuoIntelligence alerted our customers with a Warning regarding the initial exploitation activity.

Rollups
Industry impacted: Government, Industrials

  • Unnamed Threat Actors Breached Four Russian Cybercrime Forums
  • MuddyWater Linked to Earth Vetala Campaign, Continues to Target Organizations in the Middle East
  • European Banking Authority Disclosed Microsoft Exchange Email Server Compromise
  • Pulse Secure and Supermicro Release Out-of-Cycle Advisory to Address BIOS Trickboot Vulnerability
  • SITA, IT Provider for the Aviation Industry, Suffered a Cyberattack That Breached Passenger Data
  • F5 Releases Security Update for Four Critical Vulnerabilities in BIG-IP and BIG-IQ Products

Geopolitics

Industry impacted: Government

China’s leaders unveiled the 14th Five-Year Plan draft, which sets goals and strategies for developing the country’s economy until 2025. The Five-Year Plan’s strong focus on tech development, innovation, and domestic growth could intensify the tech race between the US and China. China’s new domestic development policies could result in unexpected consequences for the tech global supply chain and potentially increase cyber espionage targeting sectors of high priority for China, such as semiconductors and AI, but also on emerging sectors, including quantum computing.

Rollups
Industry impacted: Energy, Government

  • US Concerned Over Increased Attacks Against Saudi Arabia After Houthis Target Saudi Oil Assets
  • German Defense Ministry Reportedly Warns of Increasing Threat from Russia and China
  • US Reportedly Preparing ‘Retaliation’ Against Foreign Adversaries Involved in Cyber Campaign That Targeted US Entities
  • EU Commission Announces 2030 Digital Compass Plan