Weekly Intelligence Snapshot – Week 46
Pro-Russia hacktivist group From Russia With Love has been deploying Somnia Ransomware in Ukraine since spring 2022. But the #Malware is actually a Wiper, with no offer to recover the data.
Weekly Intelligence Snapshot – Week 45
In our latest Weekly #Intelligence Summary: ASEC Analysis Team has seen LockBit 3.0 Ransomware deployed through Amadey Bot, an Infostealer Botnet on sale in underground forums.
Weekly Intelligence Snapshot – Week 44
Microsoft reports the RaspberryRobin worm is now part of a malware ecosystem and one of the largest active malware distribution platforms (distributing Bumblebee, IceID, Truebot).
Weekly Intelligence Snapshot – Week 43
The US publishes its new #NationalSecurity Strategy focussed on China and Russia and emphasizing the key role of the Indo-Pacific region.
Weekly Intelligence Snapshot – Week 42
This week the Microsoft Threat Intelligence Center reports on ransomware, “Prestige”, which targets transportation and logistics sectors in Poland and Ukraine.
Weekly Intelligence Snapshot – Week 41
A CISA advisory reveals vulnerabilities exploited by China-sponsored groups. PatchTuesday: Microsoft fixes 84 #vulnerabilities (inc two 0-day).
Weekly Intelligence Snapshot – Week 40
This week, we analyze new espionage-driven campaigns related to the Lazarus/ZINC activity cluster.
Weekly Intelligence Snapshot – Week 39
We are closely following increased geopolitical tensions after the potential sabotage attacks to Nordstream pipelines in the Baltic sea.
Weekly Intelligence Snapshot – Week 38
Malware analyst 3xp0rt has uploaded a Lockbit 3 ransomware builder, allowing anyone to build executables for their own operation.
Weekly Intelligence Snapshot – Week 37
This week we report Emotet is still active. The DFIR Report describes an incident in May 2022 which began with a phishing email containing an Excel file with a malicious macro. Microsoft fixed 63 vulnerabilities in its PatchTuesday bulletin including two zero-day vulnerabilities, one actively exploited in the wild. In Geopolitics, Armenia and Azerbajan resumed conflict. Despite a reported temporary ceasefire, a new conflict in the region could worsen the global #EnergyCrisis and possibly pull in #Russia and #Turkey to the conflict.
