This alert was created automatically by our award-winning intelligence product Silobreaker Online. Story selection is determined by an algorithm and based on a set of queries initially set by a Silobreaker user. Contact productinfo[at]silobreaker[dot]com for more information.

Heat – Trending Malware and Threat Actors
Name Heat 1 Heat 7 Vol 1 Vol 7
EvilQuest 34 56
LokiBot Trojan 44 129
GoldenSpy 12 44
FakeSpy Malware 8 9
AZORult Stealer 11 23
Alina Malware 5 5
APT15 5 5
WastedLocker 10 38
Promethium Group 6 28
IcedID Trojan 6 19
Data Breaches
DarkReading – Corporate employees usually have IT depts and security teams available when a breach hits. But what about everyday… https://t.co/qSmwtNcPFZ
DarkReading – TwitterJul 01 2020 16:37
Corporate employees usually have IT depts and security teams available when a breach hits. But what about everyday consumers and SMBs with few resources? We created a list of tips people can use to respond to a breach and prevent future attacks:…
Dinosn – Personal data of thousands of users from the UK, Australia, South Africa, the US, Singapore exposed in bitcoin scam https://t.co/ezWZeGcIJP
Dinosn – TwitterJul 01 2020 09:14
Personal data of thousands of users from the UK, Australia, South Africa, the US, Singapore exposed in bitcoin scam https://securityaffairs.co/wordpress/105376/cyber-crime/bitcoin-scam.html
iamevltwin – @Gigs_Security My cat has gotten to the point of sitting on top of me, meowing, while nibbling at my exposed finger… https://t.co/Ojd1ltcpUF
iamevltwin – TwitterJul 01 2020 22:56
@Gigs_Security My cat has gotten to the point of sitting on top of me, meowing, while nibbling at my exposed fingers/arms…but thankfully not at 5am.
securityaffairs – Personal data of thousands of users from the UK, Australia, South Africa, the US, Singapore exposed in #bitcoin sca… https://t.co/ysL5hcTA0W
securityaffairs – TwitterJul 01 2020 07:14
Personal data of thousands of users from the UK, Australia, South Africa, the US, Singapore exposed in #bitcoin scam

Personal data of thousands of users from the UK, Australia, South Africa, the US, Singapore exposed in bitcoin scam


#securityaffairs #hacking

Hacker Groups
APT 38
Reddit – MalwarebytesJul 01 2020 13:54
div class="md"> Hi, I'm new to this subreddit. Currently in my final year of university in cyber security and forensics. I am doing an investigation on APT 38 , and I would like to perform some malware analysis. However, from looking online,…
Fxmsp Group Made Millions by Selling Network Access
CywareJul 01 2020 13:25
The Fxmsp hacker group has evolved from a newbie hacker in 2016 to one of the major players of the Russian-speaking underground forums. Since the time when the group started targeting corporate networks, it has stopped acting alone and expanded into…
Connection discovered between Chinese hacker group APT15 and defense contractor
ZDNet Zero Day BlogJul 02 2020 01:25
Lookout said it linked APT15 malware to Xi'an Tianhe Defense Technology, a Chinese defense contractor.
ZDNet – Promethium APT attacks surge, new Trojanized installers uncovered https://t.co/klFchXDASn
ZDNet – TwitterJul 01 2020 11:15
Promethium APT attacks surge, new Trojanized installers uncovered…
Malware
EvilQuest malware uses ransomware as decoy to steal data from Macs
IT Security GuruJul 01 2020 10:05
A new info-stealer and data wiper malware called EvilQuest uses ransomware as a cover to steal files from macOS users. The victims get infected after downloading trojanized installers of popular apps from torrent trackers. EvilQuest was first spotted…
InfoSecHotSpot – EvilQuest Mac Ransomware Has Keylogger, Crypto Wallet-Stealing Abilities A rare, new Mac ransomware has been discov… https://t.co/cH9OoF37G5
InfoSecHotSpot – TwitterJul 01 2020 06:28
EvilQuest Mac Ransomware Has Keylogger, Crypto Wallet-Stealing Abilities A rare, new Mac ransomware has been discovered spreading via pirated software packages. https://bit.ly/3eRuj7h…
TrickBot malware now checks screen resolution to evade analysis
BleepingComputer.comJul 01 2020 21:29
The infamous TrickBot trojan has started to check the screen resolutions of victims to detect whether the malware is running in a virtual machine. […]
New EvilQuest ransomware hits Mac devices through pirated software
HackReadJul 02 2020 00:49
By Zara Khan EvilQuest ransomware also impersonates Google Software Update Program… This is a post from HackRead.com Read the original post: …
Vulnerabilities
NA – CVE-2017-1712 – “A vulnerability in the TLS protocol…
CERT-EU VulnerabilitiesApplicationsJul 01 2020 19:53
"A vulnerability in the TLS protocol implementation of the Domino server could allow an unauthenticated, remote attacker to access sensitive information, aka a Return of Bleichenbacher's Oracle Threat (ROBOT) attack. An attacker could iteratively…
NA – CVE-2020-2500 – This improper access control vulnerability in…
CERT-EU VulnerabilitiesApplicationsJul 01 2020 19:53
This improper access control vulnerability in Helpdesk allows attackers to get control of QNAP Kayako service. Attackers can access the sensitive data on QNAP Kayako server with API keys. We have replaced the API key to mitigate the vulnerability,…
NA – CVE-2020-12604 – Envoy version 1.14.2, 1.13.2, 1.12.4 or earlier…
CERT-EU VulnerabilitiesApplicationsJul 01 2020 19:53
Envoy version 1.14.2, 1.13.2, 1.12.4 or earlier is susceptible to increased memory usage in the case where an HTTP/2 client requests a large payload but does not send enough window updates to consume the entire stream and does not reset the stream.
NA – CVE-2020-12605 – Envoy version 1.14.2, 1.13.2, 1.12.4 or earlier…
CERT-EU VulnerabilitiesApplicationsJul 01 2020 19:53
Envoy version 1.14.2, 1.13.2, 1.12.4 or earlier may consume excessive amounts of memory when processing HTTP/1.1 headers with long field names or requests with long URLs. COMPANY. Security-Database help your corporation foresee and avoid any security…
Ongoing Campaigns
StrongPity APT Back with Kurdish-Aimed Watering Hole Attacks
MalwareTips.comJul 01 2020 05:53
The spy malware is being delivered via a complex infrastructure with multiple layers, in an effort to avoid analysis. The APT group known as StrongPity is back with a new watering-hole campaign, targeting mainly Kurdish victims in Turkey and Syria….
Imperva Prevents Client-Side Attacks like Formjacking and Magecart
Security Bloggers NetworkJul 01 2020 09:35
The Blindspot of Web Security is Client-side Code One of the troubling blindspots for security teams is third party JavaScript services embedded on a website. The popularity of JavaScript services used by developers and marketing teams means this…
Alina Point-of-Sale Malware Spotted in Ongoing Campaign
Threatpost.comJul 01 2020 20:42
The malware is using DNS tunneling to exfiltrate payment-card data.
New Botnet Breaks the Record of the Biggest PPS DDoS Attack
CywareJul 01 2020 13:25
Cybercriminals have been continuously enhancing their Distributed Denial of Service (DDoS) techniques in an attempt to stay ahead of the mitigation techniques. One such evolved attempt of DDoS attack was recently faced by a financial organization in…

Although Silobreaker has relied on what it regards as reliable sources while compiling the content herein, Silobreaker cannot guarantee the accuracy, completeness, integrity or quality of such content and no responsibility is accepted by Silobreaker in respect of such content. Readers must determine for themselves what reliance they should place on the compiled content herein.

Silobreaker Daily Cyber Alert

Sign up for the latest news on data breaches, hacker groups, malware and vulnerabilities.

Silobreaker
This website uses cookies.
See our privacy policy at www.silobreaker.com/legal