QuoIntelligence’s Weekly Intelligence Snapshot for the week of 25 – 31 Mar is now available! Find a summary here and subscribe to our mailing list below if you want to receive regular updates from us!

Cyber

Threat Actor
Industry impacted: Industrials

Researchers at Kaspersky Labs disclosed new findings of a multi-layer loader malware dubbed Ecipekac and the next-stage payloads it delivers, tied to a cyber-espionage campaign known as A41APT. The researchers attribute this campaign to the China-linked nation-state threat actor group APT10 and the reported period of known activity for the campaign is at least March 2019 to January 2021.

Rollups
Industry impacted: Consumer Discretionary, Financials, Government, Industrials, Information Technology

• Unknown Threat Actor Leverages Hades Ransomware for Big Game Hunting
• The Ghostwriter Campaign Linked to Russian Military Unit Allegedly Targeted German Parliament Members
• The Clop Ransomware Group Adopts New Tactics to Apply Maximum Pressure on Targeted Victims
• Apple Vulnerability Impacting iOS Exploited in the Wild
• Akamai Report Details 2021 DDoS Trends and Largest Ransom DDoS Attack
• Ubiquiti Breach From Earlier this Year Reportedly Worse than Reported
• Analysis of a Recent Sodinokibi Ransomware Deployment
• PayPal and Facebook Diversify Their Technology to Offer New Payment Services 

Geopolitics

Industry impacted: Industrials

Ensuring the security and stability of supply chains has increasingly become a focus for governments and businesses over the previous year. The COVID-19 pandemic exposed weaknesses in the interconnected global supply chain and the risks of relying on few suppliers. In addition, the recent blockage of the Suez Canal by the Taiwanese vessel Ever Green showed how quickly trade could be disrupted and lead to economic repercussions. The Suez Canal blockade is likely to exacerbate the already ongoing tendency towards more secure supply chains, placing supply chains security at the core of national and international policies. Nations will possibly continue to develop frameworks to strengthen companies’ due diligence on suppliers and will likely place additional measures on potential new threats or increasingly relevant ones such as climate change.

Rollups
Industry impacted: Government, Information Technology

• US Administration to Impose Executive Order on Software Vendors to Improve Cybersecurity Practices
• Middle East: Iran and China Sign 25 Years, EUR 330 Billion Investment and Security Agreement
• China’s National Legislature Approves Resolution to Overhaul Hong Kong Electoral System
• Italian Navy Captain Arrested and Two Russian Officials Expelled Over Alleged Espionage Attempt