Weekly Intelligence Snapshot – Week 30

This week we cover a spearphishing campaign attributed to Evilnum, which is targeting DeFi platforms in Europe.
Weekly Intelligence Summary from QuoIntelligence

QuoIntelligence’s Weekly Intelligence Snapshot for the week of 21-27 July is now available! Find a summary here and subscribe to our mailing list below if you want to receive regular updates from us!

Want to read the full story? Subscribe to our newsletter to access the complete Weekly Intelligence Snapshot. Don’t miss out on more intelligence!

Cyber Highlights

Current Threat

Decentralised Finance Targeted by Evilnum Campaign

Industry impacted: Financials

Proofpoint researchers reported on a spearphishing email campaign targeting European entities operating in the DeFi (decentralised finance), forex, and cryptocurrency exchange. Proofpoint attributes this activity to a TA4563 activity cluster, associated with DeathStalker and EvilNum activity. The campaign exhibits multiple defense evasion techniques and evolving delivery techniques – most likely as the threat actor adapts the methodology based on effectiveness of earlier efforts.

Rollups

Industry impacted: Financials

As heatwaves become more frequent, they underline the unsuitability of several industries regarding extreme weather, and therefore cause adverse cross-sector effects. Severe weather conditions require companies to adapt to such phenomena and implement contingency measures to anticipate future incidents. QuoIntelligence analyzes the impact of heatwaves on global supply chains and on business continuity amid risk of power grid and data center outages.

  • Threat-landscape of Banking Malware and Attacks Against Financial Institutions
  • Microsoft Reintroduces a Default Block for Macros in Office Suite
  • Russian Threat Actors Target Ukrainian Software Company Using GoMet Backdoor
  • Researchers Discover Russian Ransomware C2 Network
  • Amadey Bot and Smoke Loader Malware Found in Fake Key Generating Software
  • LockBit 3.0: BlackMatter Capabilities Identified in Their Ransomware

Geo Highlights

Supply Chains and Business Continuity at Risk Amid More Frequent Heatwaves

Industries impacted: Industrials, Information Technology, Materials, Utilities

Western countries are warning of the threat China poses as the country strives to assert its supremacy both at the economic and geopolitical levels. The Chinese Communist Party has developed a whole-state approach to pursue its objectives which directly impacts the cyberthreat and geopolitical landscapes. QuoIntelligence analyzes the consequences of China’s strategy for critical industries particularly exposed to cyber espionage as well as its effects on geopolitical relations in Asia and Europe’s supply chain security.

Rollups 

Industries impacted: Communication Services, Energy, Financials, Government, Information Technology

  • The US Probes Huawei Over Equipment Near Missile Silos
  • US Transportation Security Administration Updates Its Policy For Oil And Gas Pipeline Cybersecurity
  • Italian Economy at Risk as Draghi Resigns and the ECB Hikes Rates
  • US Congress Addresses the Threat Posed by Foreign Spyware
  • China Tried to Build an Informant Network Inside the Federal Reserve System
  • The SEC is Investigating Coinbase Over the Listing of Several Crypto Assets on its Platform

 

Outlook

  • 1 August – 10th Non-Proliferation of Nuclear Weapons Review Conference

 

Interested in becoming a premium customer?

Unlock exclusive benefits by becoming a premium customer

Share this article:

Weekly Intelligence Snapshot – Week 30

Share this article:

Related Posts

Subscribe To Our
Weekly Newsletter

Subscribe to our newsletter to receive Weekly Intelligence Summaries, cyber news, and exciting updates.