QuoScient’s Weekly Intelligence Bulletin for the week of 27 February – 5 March 2020 is now available! Please contact our sales team at intel@quoscient.io to subscribe today.
Find a summary below.
CYBER
Current Threat
Industry impacted: Any
Soluble security researchers published a security advisory about a vulnerability affecting various Infrastructure-as-a-Service (IaaS) companies, which would allow an attacker to register fake look-alike (homograph) generic top-level domains (gTLDs), including .com, and .org, and subdomains using Latin homoglyph characters. Since 2017, reportedly over twelve registered homograph domains were able to acquire HTTPS certificates.
On 24 February, Apache Software Foundation released an advisory for a file read/inclusion vulnerability dubbed Ghostcat, which exists in all versions of Apache Tomcat 6.x through 9.x. Multiple Proof-of-Concepts were published including reports of mass scanning activity against the vulnerability
GEOPOLITICS
Industry impacted: Government
Over the last years, QuoIntelligence has observed cyberattacks targeting Greece correlating with diplomatic tension between Greece and Turkey. As tensions between the two countries are likely to remain strained after Turkey opened its borders to Greece in February, QuoIntelligence expects opportunistic and politically motivated cyberattacks to continue.
Outlook
12 March – Governing Council of the ECB: monetary policy meeting in Frankfurt