Cyware Weekly Threat Intelligence, July 06 - 10, 2020

Weekly Threat Briefing • July 10, 2020
Weekly Threat Briefing • July 10, 2020
The Good
With another week coming to an end, let’s take a quick glance at all the good developments that happened this week. The US Department of Justice (DoJ) indicted the notorious Fxmsp hacker responsible for breaching networks of 135 companies between 2016 and 2019. In a different incident, German authorities took down a web server controlled by the DDoSSecrets group. The server hosted the BlueLeaks website that provided access to internal documents of police personnel.
The Bad
The week also witnessed several organizations falling victims to different cyberattacks. Attackers hijacked over 240 website subdomains of various well-known companies with an aim to redirect users to malware, X-rated content, and online gambling. Meanwhile, the DXC Technology and EDP Renewable North America (EDPR NA) disclosed being hit by ransomware attacks.
New Threats
Among the new threats discovered this week, security researchers uncovered two threat actor groups, Keeper and Cosmic Lynx, that were responsible for a large number of card-skimming and BEC attacks respectively. While the Keeper gang has hijacked over 570 e-commerce sites over the last three years, the Cosmic Lynx has launched more than 200 BEC attacks since July 2019.