Cyware Weekly Threat Intelligence, March 30-April 03, 2020

Weekly Threat Briefing • April 3, 2020
Weekly Threat Briefing • April 3, 2020
The Good
With hundreds of organizations heavily relying on video teleconferencing (VTC) platforms to perform their business operations during this ongoing COVID-19 pandemic, it has become important to protect these tools from any kind of cyberattacks. Keeping this in mind, the FBI has issued a list of security measures against VTC hijacking and Zoom-bombing attacks for users and administrators. The guidelines aim to improve the cybersecurity of VTC software. In other developments, the Ministry of Defense in Japan has decided to build an AI-based system to detect malicious emails and other unwanted intrusions.
The Federal Bureau of Investigation (FBI) has released guidelines on defending against video teleconferencing (VTC) hijacking and Zoom-bombing attacks. The recommendations are proposed for those individuals and organizations that are increasingly dependent on VTC platforms like Zoom and Microsoft Teams.
Japan’s Ministry of Defense has planned to invest a sum of $237 million in cybersecurity this year. A portion of this amount will be diverted towards an artificial intelligence-based system that can counter cyberattacks.
Akamai, Amazon Web Services, Azion, Cloudflare, Facebook and Netflix have joined the Internet Society-backed Mutually Agreed Norms for Routing Security (MANRS) initiative that was launched six years ago. The program aims to advance the security and resiliency of the Internet’s routing infrastructure.
The Bad
Talking about data breaches, Marriott International revealed that the personal information of about 5.2 million guests was impacted due to unauthorized access to its employees’ login credentials. In a different incident, SOS Online Backup had leaked over 135 million records due to an unprotected database.
New threats
The week saw a tremendous increase in cyberattacks related to COVID-19 disease. Two of these attacks were executed using phishing emails and distributed malware like the new BlueTea Action trojan, LokiBot trojan, Zeus Sphinx trojan, and Remcos RAT. The widely used Zoom came under the scanner after researchers detected two zero-day flaws in the macOS version of the app. Additionally, security experts discovered several trojanized versions of the video conferencing app that were distributed via third-party stores.