Weekly Intelligence Snapshot – Week 26
After Kaspersky ICS CERT published their findings of an active shadowPad infection, QuoIntelligence analyzed the activity further in our report.
Beatriz Moya
June 30, 2022
Explore our comprehensive archive organized by taxonomy. Discover a wealth of information categorized by subject, theme, or type to enhance your research and understanding.
After Kaspersky ICS CERT published their findings of an active shadowPad infection, QuoIntelligence analyzed the activity further in our report.
Quointelligence is analyzing the use of Follina vulnerability in the campaign targeting entities in Ukraine reported by the CERT-UA, allegedly
We analyzed the encryption software samples used in HelloXD’s Ransomware operation and provide an update of the latest legislation regarding
This week we provide analysis into IndustrialSpy and their encryption software, which they recently leveraged in cyber operations.
Quointelligence reported on the Gamaredon group activity characterized by the use of SFX archives to deliver #malware. In this weekly,
Quointelligence reported on the Gamaredon group activity characterized by the use of SFX archives to deliver #malware. In this weekly,
In this Weekly we report on how a threat actor, possibly Russian, is targeting users in Germany by using information
In this weekly we investigate the emerging threat of NodePacketManager (NPM) becoming an attack vector for supply chains and the
QuoIntelligence is tracking a campaign where the threat actors are using the remote template injection to deliver an espionage implant
This week we cover our observations of #Emotet development, including differences in #TTPs observed in recent samples. We also cover
Try searching our blog
The Gentlemen Accelerates Ransomware Operations Through Scalable Affiliate Model | Russia Threatens European Drone Producers, Publishes Addresses Online
Famous Chollima Abused npm Dependency Chaining to Deliver OtterCookie and Install SSH Backdoors | Italian National Cybersecurity Agency Publishes Resolution on NIS2 Directive Compliance
Anthropic’s Mythos Preview can reportedly discover and exploit software vulnerabilities autonomously. But the claims remain unverified, and the real challenge is operational: accelerating patch cycles, automating incident response, and preparing for disclosure volumes that manual processes cannot absorb. We assess what organizations need to do now.
Iranian-Linked Threat Actors Target Programmable Logic Controllers Across US Critical Infrastructure | US-Iran Ceasefire Falters Within Hours as Lebanon Death Toll Mounts and Gulf Strikes Continue