QuoScient’s Weekly Intelligence Bulletin for the week of 10 October – 17 October 2019 is now available! Please contact our sales team at sales@quoscient.io to subscribe today.
Find a summary below.
CYBER
Vulnerabilities Industry Impacted: Information Technology
Oracle’s October 2019 critical patch update addressed security patches for 219 vulnerabilities across multiple products, including Oracle Database Server, Oracle Java SE, Oracle MySQL, and more. Separately, Adobe released an out-of-band security update patching 82 vulnerabilities in Adobe Acrobat and Reader, Experience Manager, and Download Manager.
Threat Actor Activity Industry Impacted: Financials, Industrial, Information Technology, Telecommunication Services
In the last week, QuoINT detected two attack waves of a new spear phishing campaign attributed to the Cobalt threat actor group. The campaign targets individuals of banks and financial service organizations in at least Europe, Asia, and Central and South America.
Researchers at ESET discovered a previously undocumented backdoor named PortReuse while investigating an alleged Winnti group supply chain compromise at an unnamed mobile hardware and software manufacturer based in Asia.
GEOPOLITICS
Germany’s Federal Network Agency (Bundesnetzagentur) released its updated security guidelines for the construction and operation of networks, including 5G networks.
OUTLOOK
14 October – Annual Meetings of the World Bank Group (WBG) and the International Monetary Fund (IMF)
17 October – European Council Summit
21 October – Federal Elections in Canada
24 October – Meeting of NATO Defence Ministers