Weekly Intelligence Bulletin – Week 31

2. August 19

QuoScient’s Weekly Intelligence Bulletin for the week of 25 July – 01 August 2019 is now available! Please contact our sales team at sales@quoscient.io to subscribe today.

Find a summary below.

 

CYBER

Threat Actor Activity

Industry Impacted: ANY, Financials

 

Over the last week, QuoINT detected two attack waves impersonating the National Bank of Panama to deliver the CobInt malware, the notorious backdoor used by the Cobalt Group. Both attacks waves are part of the same campaign targeting financial institutions located in at least Europe, Central America, and South America.

QuoINT detected new activity linking to the Golden Chickens Malware-as-a-Services (MaaS), involving a new variant of TerraLoader and a new VenomKit document delivering a final payload of Remote Manipulator System (RMS) to enable remote control of an infected system.

 

GEOPOLITICS

 

Large scale demonstrations took place in Russia over previous weeks. Business travelers should be aware of these ongoing protests for both physical security, as well as of possible heightened online surveillance due to the protests.

 

OUTLOOK

 

03 August – Black Hat USA 2019: Meet QuoScient’s Ioannis Bizimis and Dan Young at our event on 9 August celebrating the partnership between QuoScient, Intel 471, and Critical Start. Register here: https://www.eventbrite.com/e/intel-471-critical-start-quoscient-blackhatbsidesdef-con-pool-party-tickets-66407894801

08 August – Def Con 27 Hacking Conference