QuoScient’s Weekly Intelligence Bulletin for the week of 23 January – 30 January 2020 is now available! Please contact our sales team at intel@quoscient.io to subscribe today.
Find a summary below.
CYBER
Incident
Industry impacted: Energy
Researchers at Recorded Future identified the remote access Trojan (RAT) PupyRAT targeting a mail server of an unnamed organization in the European energy sector between 28 November 2019 and 05 January 2020.
Threat Actor
Industry impacted: Consumer Discretionary, Financials
On 27 January, QuoINT published research which uncovers new tools and activity attributed to the Golden Chickens (GC) Malware-as-a-Service (MaaS). Since 2018, our team has tracked the evolution of the GC MaaS and how different threat actors use it. In 2019, we uncovered and classified seven additional tools linked to the GC MaaS, which add to the four we uncovered in 2018.
Vulnerability
Industry impacted: Information Technology
On 27 January, researchers released a new speculative execution attack dubbed CacheOut which targets Intel processors. Successful exploitation could allow an attacker to trigger data leaks from most Intel CPUs. Intel released a vulnerability advisory, addressing the two vulnerabilities (CVE-2020-0548 and CVE-2020-0549) involved in CacheOut