Cyware Monthly Threat Intelligence

Monthly Threat Briefing • April 2, 2020
Monthly Threat Briefing • April 2, 2020
The Good
The month of March started off with several new developments and large data breaches in the cybersecurity world, but it ended with our timelines filled with COVID-19 updates. To begin with, Google developers created a new USB Keystroke Injection Protection tool to defend users against USB keystroke injection attacks. Meanwhile, The DHS’s CISA along with NIST has published guidelines for federal workers and contractors on securing data and systems while working remotely during the COVID-19 epidemic. Also, the NIST published its first draft for SP 800-53 (revision 5) after seven long years.
The Bad
Amidst Coronavirus fears, data breach incidents did not come to a halt. While Weibo witnessed a major backlash after 538 million users were uploaded on a hacking forum, General Electric suffered a breach too, revealing the PII of its employees. In other news, AMD also reported the theft of its confidential source code of its graphics products.
New Threats
Further, as we know, hackers are always innovating and experimenting with new hacking techniques. Security experts stumbled upon the notorious TrickBot trojan disguised as a malicious TrickMo app to bypass 2FA protection. Another cybercrime group targeted D-Link and Linksys’ DNS settings to infiltrate the routers with Oski information-stealing malware. The APT41 group was also spotted, exploiting vulnerabilities in Cisco routers, Citrix ADC, and Zoho ManageEngine last month.