Stay Updated With Threatcop Intelligence

Good Afternoon. Let's review this week's cybersecurity briefing...

Spotlight

An organization's median expense of a data breach was lowered by 23% when the organization used analytics to track the efficacy of cybersecurity awareness training.

- IBM

Read More: Important KPIs that can help CISOs alter Security Awareness Training?

Emerging Threats & Techniques

Phishing Attacks Surge in the UK

Here’s what you should know about:?

• A recent study from Action Fraud shows that over 11 million phishing attacks have been reported to the UK's Suspicious Email Reporting Service (SERS) in the last year.
• Almost 11,611,400 reports were sent to SERS in 2023, up from 8,074,200 reports in 2022. This is a 44% increase year-over-year.
• If you come across any suspicious text messages or phone numbers, you can call 7726 to report them for free.?
• If you receive an email you believe to be suspicious, you should immediately report it to the following email address: [email protected].?

Specialized Cybercrime Group Targets Mexican Enterprises

Here’s what you should know about:?

• Heavily customized AllaKore RAT malware is currently being used to attack Mexican Enterprises
• Attackers use well-known Mexican government resources, like documents from the Mexican Social Security Institute (IMSS), to make their operations seem more legitimate.
• Latin American attackers are probably behind the campaign. This is clear from the fact that Mexico Starlink IPs were used in the campaign and the modified RAT payload added Spanish-language instructions.
• You can stay ahead of these advanced new attack techniques and enhance your security awareness training initiatives.

APT 29 Target TeamViewer Corporate Network

Here’s what you should know about:?

• APT 29, a well-known Russian hacking group, recently infiltrated TeamViewer, the world's leading company that makes software for remote entry and control of computers.

• TeamViewer has more than 640,000 users worldwide and is installed on 2.5 billion devices. Its remote access features could give hackers a way into numerous networks.

• TeamViewer is in communication with well-known cybersecurity experts to look into the breach and take steps to mitigate it and has also activated its incident response solution.

• Health-ISAC, an intelligence-sharing community for healthcare organizations, advised that APT29 is actively exploiting TeamViewer connections.

Russia Targets French Embassies

Here’s what you should know about:?

• French diplomats are victims of the spear phishing campaign by Nobelium, a hacking group linked to Russia's foreign intelligence (SVR).

• Nobelium uses compromised email accounts of diplomatic staff to send legitimate emails with fraudulent documents.?

• This campaign, dubbed "Diplomatic Orbiter", has been ongoing for several years. They use tools like Cobalt Strike or Brute Ratel C4 in their operation.

• The complexity of the attacks suggests this is a state-sponsored operation.?

What to watch

"Think you can spot a phishing email? Test your skills and discover the truth." By Baidyanath Kumar (#CISO, JK Lakshmi Cement Ltd. )

42% of targets in Quishing Attacks were C-level executives last quarter.

What You Might Have Missed...

3.4 Million Phishing Attacks Target Middle East in One Quarter

To address this challenge, we recently released a study about a healthcare organization in the Middle East that significantly bolstered their email security.

Malware Now Disguised as PDFs

Read the full story here about how this operates and how an attack vector that is comparable to this can assist in the education of your employees.

Have any questions for us?

Drop us at the [email protected]