Cyware Weekly Threat Intelligence - July 03–07

Weekly Threat Briefing • July 7, 2023
Weekly Threat Briefing • July 7, 2023
The implementation of robust cybersecurity measures necessitates adequate funding, alongside other crucial elements. This week, the General Services Administration (GSA) has taken significant strides toward addressing this need for key federal departments. The agency has diverted a huge sum of money to the Labor Department and Environment Protection Agency (EPA) which will help improve their security postures. In another major achievement, the UK’s NCA successfully dismantled a multi-million dollar scam operation that targeted elderly people.
It was not all good in cyberspace. Several massive security incidents that either led to the leak of users’ data or disruption in operations were also reported this week. A major bottling company made a public announcement, confirming that the personal and financial information of over 28,000 employees was stolen from its systems in a data breach dating back more than six months. The operations at the largest port in Japan also came to a halt for a day after it was badly hit by ransomware. In addition to that, an Indian retailer came into the limelight for exposing around 725.8 GB of data, including over eight million user and employee records.
Truebot malware family was on the radar of federal authorities as they find new versions of the malware targeting organizations in the U.S. and Canada. Google Play Store remained a potential attack vector for threat actors, with researchers discovering two new malicious apps pilfering user data to servers hosted in China. A series of attacks against European agencies and entities were also reported in a newly discovered SmugX campaign.