QuoIntelligence’s Weekly Intelligence Snapshot for the week of 28 December 2023 – 03 January 2024 is now available! Find a summary here and subscribe to our mailing list below if you want to receive regular updates from us!
Want to read the full story? Subscribe to our newsletter to access the complete Weekly Intelligence Snapshot. Don’t miss out on more intelligence!
Cyber Highlights
Incident
Information Stealers Adopting New Cookie Regeneration Technique
A vulnerability in Google’s authentication process actively permits attackers to regenerate and reuse stolen and expired cookies. This exploitation enables cyber criminals to maintain access through these cookies indefinitely, unless the user manually intervenes by resetting them.
Rollups
Industries impacted: Consumer Discretionary, Financials, Industrials
- Financially Motivated Threat Actors are Misusing Microsoft App Installer for Malware Distribution
- A Novel Dynamic Link Library (DLL) Search Order Hijacking Technique Exploits Windows‘ Trusted WinSxS Folder
- Researchers Find new Black Basta Decryptor Exploiting Ransomware Flaw to Recover Files
- Rising Threat of Scam-as-a-Service Groups in Crypto Wallet-Draining Attacks
- Kimsuky Hackers Deploying new Tools in Latest Attacks
- EasyPark Confirms Data Breach Impacting User Information
Geopolitical Highlights
EU Outlook For 2024: Elections to Shape the EU Stance Internally and on the International Stage
QuoIntelligence provides an overview of the projects and challenges the EU will face in 2024, as well as the most relevant legislation that will enter into force this year.
Rollups
Industries impacted: Energy, Financials, Government, Industrials
- ECB to Stress Test Banks’ Ability to Recover from Cyberattack
- Iranian Warship Enters Red Sea as Tensions Rise in the Middle East
- German Authorities Investigate Possible Sabotage of LNG Pipeline
Finished Intelligence
(Sent to Premium Customers only)
- 19 December – Pro-Russia Hacktivist Group KillNet Changes Leadership and Expands Targets, Including Gambling
Latest blogs
- 11 December – Fake Handelsregister Invoices: 5 Telltale Signs to Avoid The Scam (Link zur deutschen Version hier)
A new scam is successfully targeting companies that recently updated their information in the Handelsregister. Although convincing, these fake ‘Register Court’ invoices have telltale signs you can spot to avoid becoming a victim.
Interested in becoming a premium customer? Let’s talk