MSS News: Today's Daily Report


Today's News

We are seeing an uptick in spam from sanityancle[.]com. In addition we are seeing the usual ad tracking and malicious activity. In addition we have noted Smoke Loader activity targeting Russian assets. The C2 associated with this campaign looks similar to previously reported OSX.Dummy activity and is using the same C2 server.

Today's Events

OSX Dummy and Smoke Loader Activity - Not available to subscribers

Activity around recent defacements - A list of highly suspicious defacements has occurred and has been reported in the platform. Event: 28853

Domain Threat Update Feed - A new event with 458 newly discovered domains has been added to Jigsaw Security Threat Intelligence. Event: 28850

Emotet Malware Activity - You can review details of this incident in the platform. Event: 28847

Additional Analyst Notes:

As suspected we observed an higher than normal amount of activity surrounding the healthcare and military/contracting sectors. Specifically phishing activity of which is available for subscribers to review.

#MSS

2 views

Contact: (800)447-2150 Ext. 1        To contact Jigsaw simply send a message in our chat window!

  • Facebook - Black Circle
  • Twitter - Black Circle

© 2017-2018 Jigsaw Security Enterprise Inc.

Jigsaw Security Enterprise Inc is a SDVOSB - Service Connected Disabled Veteran Owned Small Business Jigsaw Security is an operator of WIMAX networks and is operating under license WQVC235 as a common carrier, non-common carrier and private communications operator. Jigsaw Security operates cable and satellite services. Courses may be provided by a third party authorized training partner in some cases. Some training is only available for cleared and US Citizens. Courses approved by the North Carolina Department of Public Safety Private Protective Services Board for licensing and CE credits. JPM program insurance is provided by an authorized Jigsaw Security Insurance Partner and is not underwritten by Jigsaw Security. For insurance information please contact our JPM program manager. Jigsaw Security operates a network through our NCBroadband brand.