02 December 2020

This alert was created automatically by our award-winning intelligence product Silobreaker Online. Story selection is determined by an algorithm and based on a set of queries initially set by a Silobreaker user. Contact us here for more information.

Heat – Trending Malware and Threat Actors
Name Heat 1 Heat 7 Vol 1 Vol 7
APT32 14 28
njRAT Malware 8 8
Gootkit 8 22
APT BISMUTH 6 6
Apophis Squad 6 8
Mirai Trojan 4 5
Razy Malware 2 2
Vizom Malware 2 2
Bandook RAT 2 3
Pegasus Malware 2 2
Data Breaches
Cayman Islands Bank Records Exposed in Open Azure BlobThreatpost.com – Dec 01 2020 19:35An offshore Cayman Islands bank’s backups, covering a $500 million investment portfolio, were left unsecured and leaking personal banking information, passport data and even online banking PINs.
cybersecboardrm – Cayman Islands Bank Records Exposed in Open Azure Blob #Cybersecurity #security https://t.co/hMDqAQillacybersecboardrm – Twitter – Dec 01 2020 20:18Cayman Islands Bank Records Exposed in Open Azure Blob #Cybersecurity #security https://threatpost.com/cayman-islands-bank-records-exposed-azure-blob/161729/
Patient records stored by electronic health company found exposed onlineSiliconANGLE – Dec 02 2020 03:43Thousands of patient records stored by nTreatment, a company that provides electronic health and patient records to doctors and psychiatrists has been exposed online in the latest case of a company failing to secure its cloud storage. The data was…
cybersecboardrm – Cayman Islands Bank Records Exposed in Open Azure Blob #Cybersecurity #infosec #security https://t.co/bNsRekp6BIcybersecboardrm – Twitter – Dec 01 2020 19:47Cayman Islands Bank Records Exposed in Open Azure Blob #Cybersecurity #infosec #security https://threatpost.com/cayman-islands-bank-records-exposed-azure-blob/161729/?utm_source=dlvr.it&utm_medium=twitter
Hacker Groups
Signed Bandook Malware Attacks Against Multiple Industrial SectorsGBHackers On Security – RSS – Dec 01 2020 11:30
Vietnam-linked Bismuth APT leverages coin miners to stay under the radarSecurity Affairs – Dec 01 2020 11:56Microsoft warns of Vietnam-linked Bismuth group that is deploying cryptocurrency miner while continues its cyberespionage campaigns Researchers from Microsoft reported that the Vietnam-linked Bismuth group, aka …
virusbtn – Microsoft reports that the BISMUTH APT group (OceanLotus, APT32) has been engaged in Monero mining, possibly to hid… https://t.co/ln6vDW0gnevirusbtn – Twitter – Dec 01 2020 15:13Microsoft reports that the BISMUTH APT group (OceanLotus, APT32) has been engaged in Monero mining, possibly to hide its more nefarious activities…
sixdub – Another fun OceanLotus adventure I’ll share, especially given the “new hotness” is malware payload/config scanning… https://t.co/LcMmSzM2gSsixdub – Twitter – Dec 01 2020 13:58Another fun OceanLotus adventure I'll share, especially given the "new hotness" is malware payload/config scanning (CS). In 2019, Tencent security reported on possible OceanLotus campaigns (https://s.tencent.com/research/report/715.html) and provided…
Malware
Gootkit malware returns to life alongside REvil ransomwareMalwareTips.com – Dec 01 2020 10:55After a year-long vacation, the Gootkit information-stealing Trojan has returned to life alongside REvil Ransomware in a new campaign targeting Germany. The Gootkit Trojan is… Click to expand……
What is Vizom malware? Everything you need to knowAlienVault Blogs – Dec 01 2020 12:00This blog was written by an independent guest blogger. Security researchers working with IBM Security recently uncovered a new malware code that is being used to attack online banking users in Brazil.  Referred to as…
Dinosn – There’s a RAT in my code: new npm malware with Bladabindi trojan spotted https://t.co/EZn4E5645BDinosn – Twitter – Dec 02 2020 06:27There’s a RAT in my code: new npm malware with Bladabindi trojan spotted http://feedproxy.google.com/~r/SecurityBloggersNetwork/~3/gAvMH3Vo-mo/
There’s a RAT in my code: new npm malware with Bladabindi trojan spottedSecurity Bloggers Network – Dec 01 2020 19:00
Vulnerabilities
CVEnew – CVE-2020-25704 A flaw memory leak in the Linux kernel performance monitoring subsystem was found in the way if usin… https://t.co/kFl4qykYCnCVEnew – Twitter – Dec 02 2020 01:45CVE-2020-25704 A flaw memory leak in the Linux kernel performance monitoring subsystem was found in the way if using PERF_EVENT_IOC_SET_FILTER. A local user could use this flaw to starve the resources causing denial of service….
CVEnew – CVE-2020-14305 An out-of-bounds memory write flaw was found in how the Linux kernel’s Voice Over IP H.323 connectio… https://t.co/MqsRbaWvFKCVEnew – Twitter – Dec 02 2020 01:45CVE-2020-14305 An out-of-bounds memory write flaw was found in how the Linux kernel’s Voice Over IP H.323 connection tracking functionality handled connections on ipv6 port 1720. This flaw allows an unauthenticated remote user to crash the system,…
InfosecurityMag – Cybersecurity Flaws Could Lead to Biological Attacks: Report https://t.co/ffUtlYYjlkInfosecurityMag – Twitter – Dec 01 2020 10:04Cybersecurity Flaws Could Lead to Biological Attacks: Report https://www.infosecurity-magazine.com/news/cybersecurity-flaws-lead?utm_source=twitterfeed&utm_medium=twitter
Cybersecurity Flaws Could Lead to Biological Attacks: ReportInfosecurity – Latest News – Dec 01 2020 10:04Cybersecurity Flaws Could Lead to Biological Attacks: Report Unwitting scientists may be tricked into creating synthetic viruses and other toxins in their labs, according to Israeli researchers who claim to have discovered a new…
Ongoing Campaigns
Top firms Suffer Credential Stuffing Threats, Users WarnedCyware – Dec 01 2020 19:24Stolen online account credentials are always in demand in the cybercrime market. Recently, a threat actor was found selling credentials of hundreds of C-level executives at companies across the world for $100 to $1500 per account. Serious credential…
Bomb Threat, DDoS Purveyor Gets Eight YearsKrebs on Security – Dec 01 2020 14:01A 22-year-old North Carolina man has been sentenced to nearly eight years in prison for conducting bomb threats against thousands of schools in the U.S. and United Kingdom, running a service that launched distributed denial-of-service (DDoS)…
MacOS users targeted with updated malwareIT Security Guru – Dec 01 2020 11:23A new form of malware has been discovered to be targeting Apple MacOS user, with researches saying that it is tied to a state-backed hacking operation. The malware campaign has been identified by cybersecurity analysts at Trend Micro, who have linked…
Maze Ransomware: An Infamous Cybercriminal Group Announces to Shut Down its OperationsLIFARS Blog – Dec 01 2020 14:15In a press release, a notorious cybercriminal group named Maze proclaims to shut down its operations. Ever since the announcement of its statement, there is a buzz going on about the seriousness of its claims. The group has announced its wind up…

Although Silobreaker has relied on what it regards as reliable sources while compiling the content herein, Silobreaker cannot guarantee the accuracy, completeness, integrity or quality of such content and no responsibility is accepted by Silobreaker in respect of such content. Readers must determine for themselves what reliance they should place on the compiled content herein.

Silobreaker Daily Cyber Alert

Sign up for the latest news on data breaches, hacker groups, malware and vulnerabilities.

Silobreaker
This website uses cookies.
See our privacy policy at www.silobreaker.com/legal