QuoIntelligence’s Weekly Intelligence Snapshot for the week of 1- 7 March is now available! Find a summary here and subscribe to our mailing list below if you want to receive regular updates from us!


Threat Actor
Industry impacted: Health Care

Earlier this week, researchers at eSentire reported a spear phishing campaign attributed to the Malware-as-a-Service (MaaS) provider Golden Chickens (GC) that utilizes job offer lures to target LinkedIn members. Two weeks prior to the eSentire reporting, QuoIntelligence observed the same Command and Control (C2) URL and kill-chain of GC tools, which we attribute to the threat actor group FIN6.

Industry impacted: Financials, Government, Industrials, Utilities

  • Over 500 Million Facebook Records Publicly Available
  • FBI and CISA Warn of Advanced Persistent Threats Scanning for Vulnerable Fortinet Devices
  • Several European Institutions Reportedly Targeted in Cyberattack
  • Linux Bluetooth Vulnerability Proof-of-Concept Released to Public
  • Onapsis Researchers Discover Ongoing Campaigns Targeting SAP Applications


Industry impacted: Government

Tensions between Russia and Ukraine have risen significantly in recent weeks, which could potentially lead to a revival of the military conflict between the two countries. Although a full military conflict in Ukraine is unlikely, smaller military confrontations in the border territories are possible. Military confrontations in Ukraine risk destabilizing the EU and bordering countries. Additionally, Russia is likely to deploy hybrid war elements, such as disinformation and cybercampaigns against Ukraine’s critical infrastructure and allies.

Industry impacted: Government

EU Proposes Framework to Turkey to Improve Cooperation
US and Iran Make Progress in Reviving Iran Nuclear Deal


Industry impacted: Government, Information Technology

  • 5 April – 2021 World Bank Group and International Monetary Fund Spring Meetings
  • 12 April – European Blockchain Convention
  • 13 April – ISMG Virtual Cybersecurity Summit ANZ