QuoIntelligence

08/03/2024

⚠️ Phobos ransomware exploits vulnerabilities via Smokeloader and Cobalt Strike | China’s Two sessions 2024: GDP Target, Foreign Investment Boost. https://bit.ly/3ToTh4K

Phobos ransomware exploits vulnerabilities via Smokeloader and Cobalt Strike | China’s Two sessions 2024: GDP Target, Foreign Investment Boost

01/03/2024

⚠️ Doppelgänger: Influence Operation Targets German Political Landscape | NIST Cybersecurity Framework 2.0 Points at Supply Chain and AI Risks. https://bit.ly/3Ijhm6w
.0

Doppelgänger: Influence Operation Targets German Political Landscape | NIST Cybersecurity Framework 2.0 Points at Supply Chain and AI Risks

23/02/2024

⚠️ In this Week's Intelligence Update: Global Law Enforcement Operation Successfully Disrupts LockBit Ransomware | AI Technologies To Fuel Disinformation Risks On 2024 Elections. https://bit.ly/3uHPhmh

Global Law Enforcement Operation Successfully Disrupts LockBit Ransomware | AI Technologies To Fuel Disinformation Risks On 2024 Elections

16/02/2024

⚠️ In this Week's Intelligence Update: Patch Tuesday: Microsoft Patches 73 Flaws | US Joint Cyber Defense Collaborative Presents 2024 Priorities. https://bit.ly/3SENZQU

Patch Tuesday: Microsoft Patches 73 Flaws, Three Zero-Days | US Joint Cyber Defense Collaborative Presents 2024 Priorities

09/02/2024

⚠️ In this Week's Intelligence Update: AnyDesk Cyberattack Implications | Governments Take Measures Against Commercial Spyware.
https://bit.ly/3OCBT9X

AnyDesk Revoked Security-Related Certificates due to a Cyberattack | Governments Take Measures Against Commercial Spyware

02/02/2024

⚠️ In this Week's Intelligence Update: UNC4990 Distributes Malicious Payloads | Research Highlights Back-Ups and Measures Mitigating Data Exfiltration Are Key To Avoid Ransom Payment

◾ UNC4990 Distributes USB Malicious Payloads
UNC4990, a threat actor driven by financial gain and focusing on Italian targets, employs malicious USB drives for attacks on users and companies in Italy. This actor cleverly utilizes legitimate services to host harmful payloads, effectively camouflaging their malicious operations within genuine user activities.

◾Research Highlights Back-Ups and Measures Mitigating Data Exfiltration Are Key To Avoid Ransom Payment
QuoIntelligence analyzes the recent research by the University of Twente into the decision making process of ransomware victims, highlighting the key takeaways from the study.

29/01/2024

We just published our 2024 Cybersecurity and Geopolitical Threat Landscape Outlook! Our blog provides a strategic outlook essential for cybersecurity professionals and organizations to navigate the evolving threat landscape.

💡 Have a look to see our insights on:
- ECrime Evolution
- Malware-as-a-Service (MaaS) sophistication
- Infostealers' new capabilities
- The increase in the use of Living-Off-the-Land Binaries and signed system drivers
- AI integration in offensive operations
- Geopolitical climate impacting cyberspace and the global economy, and more!

🌐 Read the full analysis on our website https://bit.ly/3Olokvp

Decoding 2024’s Threat Landscape: Cyber extortion to take innovative forms, AI at a crossroads, and geopolitics increasingly shaping the threat landscape and global economy.

22/01/2024

Our investigation uncovers a previously unreported and undetected variant of the WIREFIRE web shell, a Python-based implant found in Ivanti Connect Secure (ICS) VPN compromised appliances.

Our investigation uncovers a previously unreported and undetected variant of the WIREFIRE web shell, a Python-based implant found in Ivanti Connect Secure (ICS) VPN compromised appliances.