QuoIntelligence’s Weekly Intelligence Snapshot for the week of 27 January – 02 February is now available! Find a summary here and subscribe to our mailing list below if you want to receive regular updates from us!

Want to read the full story? Subscribe to our newsletter to access the complete Weekly Intelligence Snapshot. Don’t miss out on more intelligence!

Cyber Highlights

Lazarus: APT Targets Defense Sector By Leveraging Windows Update Client and GitHub in Latest Campaign

Industry impacted: Government

On 27 January, researchers at Malwarebytes reported a new spear-phishing campaign attributed to the Lazarus group which targets users with malicious decoy documents disguised as job offers or letters purportedly coming from renowned defense companies such as Lockheed Martin, BAE Systems, Boeing, Airbus, GM, Rheinmetall, and Northrop Grumman. The campaign is suspected to be a part of long running North Korean espionage campaign known as Operation “Dream Job”. The objective of the campaign is to steal confidential information and money from the defense companies to support the DPRK regime.

Rollups

Industries impacted:Communication Services, Energy, Financials, Government, Health Care, Information Technology

  • Conti Compromises Delta Electronics
  • Gamaredon: Newly Discovered Ukrainian Cyber-Espionage Campaign
  • German Oil Distributors Targeted in Cyberattack
  • Samba Impacted by Code Execution Vulnerability
  • Qubit Finance Platform Loses Millions Following a Successful Cyber Security Breach
  • PowerLess: a New Powershell Backdoor Used by Iranian APT35

Geo Highlights

Ukraine Update: Ukraine Boosts Army, US, UK Sending Troops to Eastern Europe

Industry impacted: Government

Tensions continue to be high at Ukraine’s border. Following increased military capacity building by Ukraine and Russia and increased ceasefire violations, QuoIntelligence expects hostility between the countries to continue in the short and medium term. This will likely result in recurrent conflict escalation, cyberattacks, and other forms of hybrid warfare such as disinformation campaigns.

Rollups

Industry impacted: Communication Services, Information Technology

  • China: Winter Olympic Games to Take Place in Beijing and Zhangjiakou, Hebei Province
  • EU Presents New Tech Standards Plan to Counter China’s Influence
  • Data Protection Authority Rules that IAB Europe’s Consent Popups Infringe GDPR
  • EU Launches Case at WTO Over China’s Trade Restrictions Against Lithuania