This section listed below contains summaries on various threat intelligence stories that occurred during the past week. The intelligence in this week's iteration discuss the following threats: APT20, Dudell, Malspam, Phishing, Poison Frog, Rancor, Stronium, Targeted attacks, Tokyo Olympics 2020, and Zero-day. The IOCs related to these stories are attached to the Weekly Threat Briefing and can be used to check your logs for potential malicious activity.
Trending Threats
US Navy Memo Raised Cybersecurity Concerns About DJI Drones (December 16, 2019)A classified memo has been released by the U.S. Army supporting a decision made in 2017 to discontinue the use of drones made by the Chinese manufacturer, DJI. The previous U.S. Navy memo was released in 2017 and cited a number of risks associated with the DJI products. It drew attention to open source reports which highlighted how a data link from the ground station was vulnerable. The vulnerability meant that malicious actors could upload images, videos and telemetry to servers discreetly, and highlighted uncertainty over how electromagnetic interference could result in loss of control. DJI is one of the world's largest manufacturers of drones. In May 2019, the U.S. Department of Homeland Security (DHS) further warned that sensitive data could be being sent back to manufacturers in China, which in turn can be accessed by the government.Click here for Anomali recommendationMITRE ATT&CK: [MITRE ATT&CK] Third-party Software - T1072
Tokyo 2020 Staff Warns of Phishing Disguised As Official Emails (December 20, 2019) ..
Support the originator by clicking the read the rest link below.
