Getting the Most Out of Threat Intelligence Ingestion
EclecticIQ Monthly Vulnerability Trend Report - July 2020
Key Findings A newly discovered privilege escalation vulnerability in Windows Netlogon could result in the complete takeover of a Domain Controller (DC) in a vulnerable network. Multiple vulnerabilities in various technologies have been systematically exploited by attackers. Microsoft addressed a total of 129 vulnerabilities in its September 2020 Patch Tuesday advisory, including 20 that are listed as critical.
By Aleksander W. Jarosz, Fusion Center Analyst The outbreak of Coronavirus (COVID-19) has become a global issue attracting many opportunistic threat actors. Monitoring these attacks allows threat intelligence analysts to track adversarial capabilities; observe changes in tactics, techniques, and procedures (TTPs); and hypothesise how they may feed into future threats. Analysts mapped the landscape of Coronavirus phishing threats in order to evaluate what threat actors were participating in the operations and to determine if further activity is likely to cascade from the initial, delivery-phase activity.