Weekly Intelligence Bulletin – Week 26

28. June 19

QuoScient’s Weekly Intelligence Bulletin for the week of 20 June – 27 June 2019 is now available! Please contact our sales team at sales@quoscient.io to subscribe today.

Find a summary below.

 

CYBER

Current Threat

Industry Impacted: Telecommunication Services

Researchers reported on a global cyber espionage campaign dubbed “Operation Soft Cell” which breached the systems of at least eight information technology service providers in Europe, Africa, the Middle East, and Asia. Researchers attributed the campaign *”with a high level of certainty”* to multiple Chinese government-backed groups, such as APT10.

 

Vulnerabilities

Industry Impacted: Information Technology

Cisco released emergency patches for two critical vulnerabilities, a remote code execution vulnerability and an authentication bypass vulnerability, existing in its Data Center Network Manager (DCNM) web-management console. The vendor also patched a critical authentication bypass vulnerability existing in its Digital Network Architecture (DNA).

 

Threat Actor Activity

Industry Impacted: Financials, Government, Health Care, Industrial, Information Technology, Materials, Telecommunication Services, Utilities

Researchers at Recorded Future profiling APT33 threat activity observed the group adopting new Tactics, Techniques, and Procedures (TTPs) and modifying aspects of its attack infrastructure following a recent public report from Symantec.

 

GEOPOLITICS

Several media outlets reported the US conducted a cyberattack against Iran in retaliation for Iran shooting down a US surveillance drone last week. Tensions between Iran and US have continuously worsened over previous months and the risk of a military confrontation in the coming weeks has increased.

 

OUTLOOK

02 June – INTERPOL World 2019

28 June – US President Trump to meet Russian President Putin during G20, Japan

28 June – US President Trump to meet Chinese President Xi during G20 summit, Japan