Welcome to your Daily Threat Brief. Every morning we transmit a succinct summary of threat activities designed to inform your decision-making. Learn things your adversaries wished you didn’t. 

Sign Up For The Daily Threat Brief

Extortion emails carrying bomb threats cause panic across the US

US law enforcement authorities are urging Americans to remain calm after a massive spam campaign carrying bomb threats has scared people and caused building evacuations all day across the country. The source of all problems is a spam campaign that got underway today, and which was sent to millions of… Read more

Iran Hackers Hunt Nuke Workers, US Officials

As U.S. President Donald Trump re-imposed harsh economic sanctions on Iran last month, hackers scrambled to break into personal emails of American officials tasked with enforcing them, The Associated Press has found — another sign of how deeply cyberespionage is embedded into the fabric of U.S.-Iranian relations. The AP drew… Read more

Most organizations suffered a business-disrupting cyber event

A study conducted by Ponemon Institute found that 60 percent of organizations globally had suffered two or more business-disrupting cyber events — defined as cyber attacks causing data breaches or significant disruption and downtime to business operations, plant and operational equipment — in the last 24 months. Further, 91 percent of respondents… Read more

Russia-Linked Phishing Attacks Hit Government Agencies on Four Continents

A recent campaign attributed to the Russian cyber-espionage group Sofacy hit government agencies in four continents in an attempt to infect them with malware, Palo Alto Networks security researchers say. Also known as APT28, Fancy Bear, Pawn Storm, Sednit and Strontium, the Russian state-sponsored hacking group has been focusing on… Read more

Secure Critical Infrastructure Top of Mind for U.S.

When it comes to cyber-threats and defense, the U.S. government says that critical infrastructure threats are a growing concern. Rob Joyce, senior advisor of cybersecurity strategy for the National Security Agency (NSA), said that while attacks targeting the systems that power the manufacturing, power and water plants, the oil and gas… Read more

Cyberattacks Skyrocketed in 2018. Are You Ready for 2019?

Board directors continue to up their investment in cybersecurity. Seventy-three percent  now say their organization requires that third-party vendors meet certain cyber risk requirements—up 30 percentage points from 2016, according to the 2018 BDO Cyber Governance Survey. This increase in requirements and investment is warranted. During 2018, we have seen… Read more

90% Of Consumer IoT Vendors Don’t Let Researchers Report Vulnerabilities

A new report commissioned by the IoT Security Foundation (IoTSF) paints a scandalous picture of how many of the most popular consumer Internet of Things (IoT) brands are failing to protect their customers from being spied upon, having their data stolen or unwittingly helping criminal endeavors to spread malware or… Read more

Save the Children Foundation duped by hackers into paying out $1 million

Save the Children Foundation has revealed that the charity was targeted by fraudsters last year, leading to the loss of $1 million. The US arm of the non-profit said that con artists managed to compromise an employee’s email account in order to masquerade as the staff member in question. Once access was… Read more

Operation Sharpshooter Takes Aim at Global Critical Assets

Researchers have detected a widespread reconnaissance campaign using a never-before-seen implant framework to infiltrate global defense and critical infrastructure players — including nuclear, defense, energy and financial companies. The campaign, dubbed Operation Sharpshooter, began Oct. 25 when a splay of malicious documents were sent via Dropbox. The campaign’s implant has… Read more

U.S. Believes Chinese Intelligence Behind Marriott Hack

The United States said that China was behind the massive hack of data from hotel giant Marriott, part of an ongoing global campaign of cyber-theft run by Beijing. Secretary of State Mike Pompeo confirmed to Fox News that the government believes China masterminded the Marriott data theft. “They have committed cyber… Read more

Why Microsoft is fighting to stop a cyber world war

Two days last year finally woke the world up to the dangers of cyberwarfare, according to Microsoft’s President Brad Smith: 12 May and 26 June. On 12 May the WannaCry ransomware attack created havoc by encrypting PCs across the world and costing billions to repair the damage. Just over a month later… Read more

Ships infected with ransomware, USB malware, worms

Ships suffer from the same types of cyber-security issues as other IT systems, a recent document released by the international shipping industry reveals. The document is the third edition of the “Guidelines on Cyber Security onboard Ships,” an industry-approved guide put together by a conglomerate of 21 international shipping associations… Read more

Hacking democracy efforts continue with upticks in malware deployments

Comodo Cybersecurity released its Global Threat Report 2018 Q3, offering insights from Comodo Threat Research Lab experts into key cyberthreat trends and the impact of malware on elections and other geopolitical events. The Comodo Q3 report also reveals disturbing upticks in malware deployment leading up to major national elections. Comodo… Read more

Samsung fixes flaws that could have let attackers hijack your account

A recently patched trio of flaws in Samsung’s mobile site was leaving users vulnerable to attackers who could have reset their user passwords and hijacked their accounts, The Register reports. The flaws were found by security researcher Artem Moskowsky, who said that they were all cross-site request forgery (CSFR), or, alternatively, XSRF, bugs. Moskowsky said… Read more

Shamoon Disk-Wiping Malware Re-emerges with Two New Variants

Two new samples of the Shamoon data-wiping malware have been discovered in the wild, after a period of silence that lasted for about two years. Shamoon was first seen in attacks against Saudi Aramco oil provider in 2012 when it erased data on more than 35,000 computer systems belonging to the company.… Read more





Gain Deeper Insights Into The Threat

Sign up to gain access to our special reports on threat actors and their tactics as well as daily Threat Brief.

Your support will enable us to continue our production of action-oriented content and help us help you stay informed on the latest in adversary activities.

Try our free two week trial.

Sign Up For Free Trial of The Daily Threat Brief