Weekly Intelligence Snapshot – Week 08
We track a campaign where a OneNote file delivers QakBot through politically-themed emails. China published its GSI concept and a
Mike Bailey
February 23, 2023
We track a campaign where a OneNote file delivers QakBot through politically-themed emails. China published its GSI concept and a
It’s been a turbulent week, especially for Germany-based organizations. As Germany and the US announced they are to supply frontline
Microsoft releases its Patch Tuesday update with two Zero-Day vulnerabilities, one exploited in Malware distribution.
Regulatory landscapes more complex as
This week we highlight Telecommunication and business process outsourcing companies hit by SIM swapping operations. In geopolitics, we look at
This week we report Emotet is still active. The DFIR Report describes an incident in May 2022 which began with
In this Weekly we report on how a threat actor, possibly Russian, is targeting users in Germany by using information
In this weekly we investigate the emerging threat of NodePacketManager (NPM) becoming an attack vector for supply chains and the
QuoIntelligence is tracking a campaign where the threat actors are using the remote template injection to deliver an espionage implant
This week we cover our observations of #Emotet development, including differences in #TTPs observed in recent samples. We also cover
As the Russian invasion in Ukraine enters its third week, we analyze the latest cyber security events surrounding the invasion
Try searching our blog
The Gentlemen Accelerates Ransomware Operations Through Scalable Affiliate Model | Russia Threatens European Drone Producers, Publishes Addresses Online
Famous Chollima Abused npm Dependency Chaining to Deliver OtterCookie and Install SSH Backdoors | Italian National Cybersecurity Agency Publishes Resolution on NIS2 Directive Compliance
Anthropic’s Mythos Preview can reportedly discover and exploit software vulnerabilities autonomously. But the claims remain unverified, and the real challenge is operational: accelerating patch cycles, automating incident response, and preparing for disclosure volumes that manual processes cannot absorb. We assess what organizations need to do now.
Iranian-Linked Threat Actors Target Programmable Logic Controllers Across US Critical Infrastructure | US-Iran Ceasefire Falters Within Hours as Lebanon Death Toll Mounts and Gulf Strikes Continue