QuoScient’s Weekly Intelligence Bulletin for the week of 4 July – 11 July 2019 is now available! Please contact our sales team at sales@quoscient.io to subscribe today.
Find a summary below.
CYBER
Reported Incidents
Industry Impacted: Consumer Discretionary, Industrial
The UK’s Information Commissioner Office (ICO) announced their intent to fine British Airways around EUR 205 million and Marriott International around EUR 110 million under GDPR for their respective 2018 data breaches.
Vulnerabilities
Industry Impacted: ANY, Information Technology
Microsoft’s patch Tuesday release includes patches for 78 vulnerabilities across multiple products, including Internet Explorer, Edge, Exchange Server, SQL Server, Microsoft Office, Windows, and more. Of the vulnerabilities, 62 are rated as important and 15 are rated as critical. The release also includes patches for two zero-day vulnerabilities and six publicly disclosed vulnerabilities.
Zoom released an emergency patch addressing a zero-day vulnerability for the Mac Zoom Client after a researcher published the details and a proof-of-concept (PoC) of the vulnerability.
Threat Actor Activity
Industry Impacted: ANY, Financials
On 11 July, QuoINT detected a malicious document dropping the CobInt malware, the notorious backdoor used by the Cobalt Group. We subsequent released a Warning to customers notifying of this campaign and provided relevant Indicators of Compromise to assist in early detection.
QuoINT detected new activity linking to the Golden Chickens Malware-as-a-Services (MaaS), involving a malicious Rich Text File (RTF) document generated by VenomKit. This particular document attempts to communicate with a domain that previously delivered a malware payload known as SmokeLoader (aka Dofoil aka Sharik).
GEOPOLITICS
Iran and China agreed on cooperation in cyberspace to counter *”US unilateralism and hegemony in the field of IT”* and threats in cyberspace.
OUTLOOK
17 June – Please join us for our Webinar “Golden Chickens Threat Actor Deep Dive Analysis” with Bright TALK. Visit https://www.brighttalk.com/webinar/golden-chickens-case-study-analysis-with-quolab/ to register!
17 July – Aspen Security Forum