Weekly Intelligence Summaries

This week, we observed various ransomware activities, e.g., affiliate programs targeting critical infrastructure, ransomware campaigns, and more law enforcement disruption. Also, read about diplomatic tensions between France and the UK over migration, trade fishing, and Northern Ireland.

This week, we cover new campaigns launched by TA406, where the APT group was observed distributing malware for information gathering. We also look at new developments affecting supplychains and shortages worldwide, such as new challenges to shipping in China.

This week, we report on the resurgence of Emotet observed in spam campaigns and using Trickbot infrastructure. We also highlight the geopolitical tensions between Poland and Belarus, and discuss the use of HybridWarfare.

This week we cover actively exploited 0day vulnerabilities in Microsoft, as well as high priority vulnerabilities in VMware, Cisco, and PaloAltoNetworks products. We also cover threat groups leveraging Initial Access Brokers for the first stages of attack. As far as regulation, the US approves an Infrastructure Plan that Includes cybersecurity and crypto provisions.

This week, we cover the continuing law enforcement disruption campaigns impacting REvil, LockerGoga, and BlackMatter. In addition, a new ransomware family emerged, which utilizes the double extortion ransom technique. Geopolitically, we look at the newly adopted NIS2 Directive and Radio Equipment Directive by the EU.

Multiple technology giants released their security patches for October’s Patch Tuesday. Microsoft and Apple both address zero-days with active exploitation. Also features in this week’s edition is the ongoing semiconductor shortage. Read about the latest developments and prospected shortfalls for 2022.

Multiple technology giants released their security patches for October’s Patch Tuesday. Microsoft and Apple both address zero-days with active exploitation. Also features in this week’s edition is the ongoing semiconductor shortage. Read about the latest developments and prospected shortfalls for 2022.

Multiple technology giants released their security patches for October’s Patch Tuesday. Microsoft and Apple both address zero-days with active exploitation. Also features in this week’s edition is the ongoing semiconductor shortage. Read about the latest developments and prospected shortfalls for 2022.

This week, read about ChamelGang, a new cyber espionage APT group operating since at least early 2021, is using diverse arsenal to target organizations and supply chains. Our second topic are the PandoraPapers, an investigation based on more than 11.9 million leaked documents recently released by the International Consortium of Investigative Journalists (ICIJ).

ESET research discovered new APT actor “Famous Sparrow” conducting global targeted cyber espionage attacks to deliver a custom backdoor known as SparrowDoor since 2019. Geopolitically, we look at how the energy transition and increased prices impact business operations and supply chains around the globe.