QuoScient’s Weekly Intelligence Bulletin for the week of 28 March – 04 April 2019 is now available! Please contact our sales team at sales@quoscient.io to subscribe today.
Find a summary below.
CYBER
Current Threat Industry Impacted: ANY
Researchers reported a phishing campaign composed of emails having generic subjects varying in language depending on the targeted country and delivering Emotet malware.
Reported Incidents Industry Impacted: Financials
On 27 March, Kuwait’s Gulf Bank announced a service disruption to their network which impacted
international transfers, and might have led to a maximum potential loss of USD 9.22 million (KD
2.8 million). Shortly following the announcement, we questioned if the Bank solely experienced
technical issues, or if the reported incident was due to a cyberattack. However, through our evaluation of the collected information, we have no solid information to disprove Gulf Bank’s official statement.
Vulnerabilities Industry Impacted: Information Technology
A security researcher published a Proof-of-Concept for two zero-day vulnerabilities affecting the latest versions of Microsoft Edge and Internet Explorer.
Threat Actor Activity Industry Impacted: Financials
QuoINT detected two new attack waves occurring on 28 March dropping the CobInt malware. Both campaigns were active at the time we first identified the samples in the wild. The attack vector consisted of spear phishing emails containing a malicious link either in the body or in a non-malicious PDF attachment.
GEOPOLITICS
According to media reports, satellite images show that Saudi Arabia is nearing completion of its first nuclear reactor. While the Saudi government insists it will only use the reactor to generate electricity and for research purposes, the government has previously voiced their interest in building nuclear weapons.
Several events in Israel over the previous month could impact the upcoming elections.
Cyberattacks will continue to play a role in elections, whether through misinformation campaigns
leveraged by foreign states, cyber intrusions, or leveraged against opposition parties.