Government
Operation Sharpshooter Targets Global Nuclear, Defence, Energy, Financial Entities
11 - 18 December 2018
Researchers discovered a new global campaign dubbed Operation Sharpshooter that targets 87 nuclear, defence, energy, and financial entities across the world.

Researchers discovered a new global campaign dubbed Operation Sharpshooter that targets 87 nuclear, defence, energy, and financial entities across the world. Operation Sharpshooter uses macros-laden documents to download a first-stage in-memory implant that delivers a second-stage reconnaissance implant dubbed Rising Sun, which uses code from Lazarus Group’s Trojan Duuzer from 2015. The macros-laden documents are disseminated via Dropbox links shared over social media. Rising Sun collects data about network adapter, computer name, operating system product name from registry, username, and IP address.
References:
[1] ‘Operation Sharpshooter’ Targets Global Defense, Critical Infrastructure
References:
[1] ‘Operation Sharpshooter’ Targets Global Defense, Critical Infrastructure
More Weekly Cyber Newsanalysis and insights

Weekly Comments
This week there were multiple reports about cyberattacks on critical information infrastructure sectors around the world, raising concerns about the potential damages on the national security of affected countries.

Irish Statutory Health Organisation Exposes Email Addresses Of Job Applicants
The Pre-Hospital Emergency Care Council (PHECC), an independent statutory health organisation in Ireland, erroneously exposed the email addresses of 200 job applicants in an email to inform them that their applications had been unsuccessful.

Analysis Shows Education Industry Ranked Worst In Cybersecurity
Analysis published by SecurityScorecard, an information security company based in the United States, shows that the education industry has been ranked the worst in cybersecurity out of 17 major industries in 2018.

Facebook Bug May Have Exposed Private Photos of 6.8 Million Users
Facebook has identified a bug that may have exposed the private photos of up to 6.8 million users.

Shipping Industry’s Cybersecurity Guide Discloses Past Attacks
The latest edition of a cybersecurity guide published by a conglomerate of 21 international shipping associations and industry groups disclosed several previously unknown cyberattacks that happened on ships and ports.

Donot APT Group Targets Pakistani Businessman In China
The Donot APT group, also known as APT-C-35, has been targeting a Pakistani businessman working in China since May.
Government
Operation Sharpshooter Targets Global Nuclear, Defence, Energy, Financial Entities
11 - 18 December 2018
Researchers discovered a new global campaign dubbed Operation Sharpshooter that targets 87 nuclear, defence, energy, and financial entities across the world.

Researchers discovered a new global campaign dubbed Operation Sharpshooter that targets 87 nuclear, defence, energy, and financial entities across the world. Operation Sharpshooter uses macros-laden documents to download a first-stage in-memory implant that delivers a second-stage reconnaissance implant dubbed Rising Sun, which uses code from Lazarus Group’s Trojan Duuzer from 2015. The macros-laden documents are disseminated via Dropbox links shared over social media. Rising Sun collects data about network adapter, computer name, operating system product name from registry, username, and IP address.
References:
[1] ‘Operation Sharpshooter’ Targets Global Defense, Critical Infrastructure
References:
[1] ‘Operation Sharpshooter’ Targets Global Defense, Critical Infrastructure
More Weekly Cyber Newsanalysis and insights

Weekly Comments
This week there were multiple reports about cyberattacks on critical information infrastructure sectors around the world, raising concerns about the potential damages on the national security of affected countries.

Irish Statutory Health Organisation Exposes Email Addresses Of Job Applicants
The Pre-Hospital Emergency Care Council (PHECC), an independent statutory health organisation in Ireland, erroneously exposed the email addresses of 200 job applicants in an email to inform them that their applications had been unsuccessful.

Analysis Shows Education Industry Ranked Worst In Cybersecurity
Analysis published by SecurityScorecard, an information security company based in the United States, shows that the education industry has been ranked the worst in cybersecurity out of 17 major industries in 2018.

Facebook Bug May Have Exposed Private Photos of 6.8 Million Users
Facebook has identified a bug that may have exposed the private photos of up to 6.8 million users.

Shipping Industry’s Cybersecurity Guide Discloses Past Attacks
The latest edition of a cybersecurity guide published by a conglomerate of 21 international shipping associations and industry groups disclosed several previously unknown cyberattacks that happened on ships and ports.

Donot APT Group Targets Pakistani Businessman In China
The Donot APT group, also known as APT-C-35, has been targeting a Pakistani businessman working in China since May.