QuoIntelligence’s Weekly Intelligence Snapshot for the week of 7 – 13 September 2023 is now available! Find a summary here and subscribe to our mailing list below if you want to receive regular updates from us!
Want to read the full story? Subscribe to our newsletter to access the complete Weekly Intelligence Snapshot. Don’t miss out on more intelligence!
Cyber Highlights
Vulnerability
Patch Tuesday: Microsoft Releases Patches For 59 Flaws, Including Two Zero-Day Vulnerabilities
Microsoft released its monthly Patch Tuesday security updates, which includes fixes for 59 flaws; two of which are actively exploited zero-days. Impacted products include Microsoft Word, Microsoft Exchange, and Microsoft Streaming Service.
Rollups
Industries impacted: Consumer Discretionary, Industrials, Information Technology
- Novel Modular Malware HijackLoader Used to Load Malware Families Such as Danabot, SystemBC, and RedLine Stealer
- Researchers Find New Family Of MacOS Obfuscated Go Infostealers Actively Target Business Users
- CVE-2023-20269 Zero-Day Vulnerability Exploited In Cisco Adaptive Security Appliance and Firepower Threat Defense
- Email Campaigns Use Evasive DBatLoader Malware to Deliver RATs and Infostealers
- A Cyberattack Shuts Down MGM Resorts In Las Vegas And Other Cities
- Massive Airbus Data Leak Allegedly Involving Thousands of Suppliers Due to a Turkish Airlines’ Compromised Account
Geo Highlights
The US Department of Defense Releases Its 2023 Cyber Strategy Summary
Industry impacted: Government
QuoIntelligence provides an overview of the US Department of Defense’s 2023 Cyber Strategy Summary.
Rollups
Industries impacted: Consumer Discretionary, Information Technology
- AI: Microsoft To Cover and Defend Its Clients In AI Copyright Lawsuits
- China Bans Use of iPhone in Ministries While Other
- US Tech Restrictions On Chinese Companies Are Expected US Lawmaker Calls for Tech Export Ban to Huawei and SMIC
- The EU Will Investigate Chinese Subsidies of Electric Cars
Products & Services
- 5 September – Mercury Bulletin
Ransomware Analytics Dashboard now available — Quickly know a lot more about the ransomware groups in your threat landscape!Now PREMIUM users can filter by interests or preferences and deep dive into ransomware groups’ activity and their reported victims — from the most active groups to the most affected locations and industries. This means you can find out more — and faster — about the groups active in your threat landscape.
- 4 September – Service News
“Data Leakage” category transition to “Information Disclosure”Based on recent customer feedback, the “Data Leakage” category in DRP categorizations is now retired. Incidents previously classified as “Data Leakage” will now be categorized under “Information Disclosure”.
Interested in becoming a premium customer? Let’s talk
