The second blog of the #TIBER series is out! We cover the TIBER-EU framework, test structure, as well as the role of the #threatintelligence provider.
Enjoy your reading: bit.ly/33vCRMM

#TBT to CEO Dan Young's (Daniel Young) chat with the CyberScoop Securiosity podcast team about how information is being shared during this unique time. Listen here: cyberscoop.com/radio/quolab-d…
#infosec #cybersecurity

New blog post: using grap to get up-to-speed on a documented malware family (QakBot)

blog.quosec.net/posts/grap_qak…

Our weekly analysis highlights a new Qakbot #malware campaign using Emotet’s infection process, a #ransomware loader tool called xoLoader detected by QuoINT, and more geopolitical & cyber threats!
Details here: bit.ly/3i2HWlS
#ThreatIntel #CyberSecurity #CyberNews

#QuoINT Weekly Snapshot: our investigation into a #datadump for exploited #PulseSecure #VPN 's posted online; new #FIN6 job-themed #spearphishing activity; analysis of Big Game Hunting with #WastedLocker #Ransomware ; and latest #Lazarus and #APT34 activity. quointelligence.eu/2020/08/weekly…

#QuoINT discovered a new, active campaign attributed to #BlackWater malware. The attack is likely mistakenly spoofing the #OSCE with a maldoc themed on the recent explosion in #Beirut . Malware & C2 infra is live, TTPs align w/ previous #BlackWater reports. quointelligence.eu/2020/08/blackw…

Why is #Geopolitics so important to include in #ThreatIntelligence reports? bit.ly/2PxGtXY

#infosec #cybersecurity #threatIntel #cyberthreatIntelligence

Following the new #BlackWater #Malware campaign using the #Beirut tragedy to lure the targets?

You can find the latest #ThreatIntelligence in our updated blog: quointelligence.eu/2020/08/blackw…

#ReconHellcat #AdvancedPersistentThreat #DNSsecurity #OSCE #cyberattack

Our weekly analysis of the top #cyber incidents and vulnerabilities is out! Including @Intel's 20GB #databreach , Microsoft vulnerabilities actively exploited in the wild, #BlackWater #malware by ReconHellcat leveraging the #Beirut tragedy, and more: bit.ly/31OlYMn

Learn how the European Central Bank #TIBER -EU framework can strongly benefit financial institutions and reduce #cyberrisk . bit.ly/2DxiGVJ

#threatintelligence #redteam #compliance

Our Weekly highlights the new #Russian -speaking #cyberespionage APT group #Redcurl , the impact of normalized relations between Israel & UAE, as well as other major #Cyber & #Geopolitical events.
Read the summary now: bit.ly/3aJGXnF

FAU Erlangen-Nbg We uploaded the slides on our blog:

blog.quosec.net/posts/lecture_…

We did this week a (remote) lecture for FAU Erlangen-Nbg students on Forensics as a part of defensive security.

Here is an example of timestamp forensics.

Earlier this month, the Research Data Alliance (ResearchDataAlliance) released #datasharing guidelines for public health emergencies, citing #COVID19 and the imperative nature of streamlining #collaboration . Read more: healthcareitnews.com/news/research-… Healthcare IT News

We are happy to introduce you to our five part blog series explaining the benefits of #geopolitics as an essential part of #Cyber #ThreatIntelligence . Today, we start with our first blog post ‘Our Holistic Approach to Cyber Threat Intelligence’: quointelligence.eu/2020/06/our-ho…

Check our Intelligence Snapshot to read about unknown threat actors abusing #Adobe Campaign open redirect, cyber #espionage campaign using InvisiMole backdoors to target orgs in Eastern Europe, and how #BlueLeaks fit into the current unrest in #US quointelligence.eu/2020/06/weekly…

Great research from ESET Research shedding light on one of #GoldenChickens customers using #Evilnum malware. The GC MaaS is still very active, and growing in usage among threat actors. Since 2020 we reported multiple attacks using updated toolkits, #staytuned

Curious about the European Central Bank #TIBER -EU framework or unsure of its benefits and if it applies to your org? In this blog series we explain TIBER benefits for #banks & how #QuoINT supports such efforts. #threatintelligence #redteam #compliance #cyberrisk quointelligence.eu/2020/07/what-i…

Read about the newest #malspam campaign distributing #Valak in our Weekly Intelligence Snapshot. It also covers a new critical, actively exploited #RCE in F5 BIG-IP devices, Citrix patching #vulnerabilities , & #Lazarus targeting online shoppers
quointelligence.eu/2020/07/weekly…

Our Weekly Snapshot is patch heavy! Microsoft (w/ 1 RCE in #WindowsDNS ), Zoom, SAP release necessary updates. We also report on #Evilnum using #GoldenChickens #Maas tools in a new campaign. For geo, we cover the new Iran-China econ& security partnership quointelligence.eu/2020/07/weekly…