Seriously Risky Business Newsletter
June 16, 2020
Srsly Risky Biz: Tuesday, June 16
Presented by

Your weekly dose of Seriously Risky Business news is supported by the Cyber Initiative at the Hewlett Foundation.
Three indicators of compromise released in the NSA's May 2020 advisory [pdf] on recent Sandworm activity reveal a lot more about Russia's formidable military hacking teams than a one-off, opportunistic campaign to hack vulnerable Exim mail transfer agents (MTAs).
Threat hunters studying those IoCs have used them to identify a large amount of infrastructure that looks custom-made to conduct credential phishing attacks against email and social media accounts used in Western countries.