Weekly Threat Briefing: Colorado Town Wires Over $1 Million To BEC Scammers

The intelligence in this week’s iteration discuss the following threats: BabyShark, Fraud, Maze Ransomware, North Korea, POS malware, Ransomware, Rowhammer, Ryuk Ransomware, Thallium. The IOCs related to these stories are attached to the Community Threat Briefing and can be used to check your logs for potential malicious activity.

Figure 1 - IOC Summary Charts.  These charts summarize the IOCs attached to this magazine and provide a glimpse of the threats discussed.


Trending Threats


Colorado Town Wires Over $1 Million To BEC Scammers (January 3, 2020)The Colorado Town Erie has paid over one million dollars in a Business Email Compromise (BEC) scam. Using social engineering, the scammers contacted the Town requesting a change of payment from cheque to electronic transfer for the Erie Parkway Bridge. The town staff accepted the form and did not verify the authenticity of the submission with the construction company, wiring one million dollars to the account. The contact form has been removed from the town’s website, with the local police working with the FBI to investigate the incident, and attempt to recover funds.Click here for Anomali recommendation


Landry's Restaurant Chain Discloses POS Malware Incident (January 2, 2020)An infection of Point-of-Sale (POS) malware has been found on Landry’s network. Landry’s, a company that owns many US restaurants, stated they found malware on 63 bar and restaurant networks and was active for at least six months. The company has stated they believe only a small number of customers have been impacted, due to security features implemented following a 2016 attack. Customers are ..

Support the originator by clicking the read the rest link below.