Weekly Threat Briefing: Iranian Hacking Group Built It’s Own VPN Network


The intelligence in this week’s iteration discuss the following threats: APT33, DDoS Attacks, DoppelPaymer, Iran, POS Malware, Medical Equipment, TrickBot, Vulnerabilities. The IOCs related to these stories are attached to the Community Threat Briefing and can be used to check your logs for potential malicious activity.



Trending Threats


Former Operator of Illegal Booter Services Sentenced for Conspiracy to Commit Computer Damage and Abuse (November 15, 2019)Sergiy P. Usatyuk, a 21-year old Illinois resident, has been sentenced to 13 months in prison for his involvement in illegal booter services responsible for millions of Distributed Denial-Of-Service (DDoS) attacks between August 2015 and November 2017. According to prosecutors, Usatyuk’s DDoS-for-hire services made him “hundreds of thousands of dollars” developing and operating booter services used to target “the American public. Usatyuk will also have a three year supervised release, must forfeit $542,925 USD in proceeds from illegal activities, and will turn over dozens of servers to the FBI. Special Agent in Charge John Strong of the FBI’s North Carolina Field Office hopes the sentencing of Usatyuk demonstrates the agency’s commitment to “unmasking malicious actors behind these types of egregious cyberattacks.”Click here for Anomali recommendationMITRE ATT&CK: [MITRE ATT&CK] Endpoint Denial of Service - T1499


Tech Giants Band Together To Form The GitHub Security Lab (November 15, 2019)Thirteen major tech firms are joining forces with GitHub in the launch of GitHub Security Lab, a community-led project designed to expand the value of open source security. According to Jamie Cool, GitHub’s Vic ..

Support the originator by clicking the read the rest link below.