03 September 2020

This alert was created automatically by our award-winning intelligence product Silobreaker Online. Story selection is determined by an algorithm and based on a set of queries initially set by a Silobreaker user. Contact us here for more information.

Heat – Trending Malware and Threat Actors
Name Heat 1 Heat 7 Vol 1 Vol 7
Cobalt Strike Beacon 6 9
PIONEER KITTEN 7 31
The Joker Malware 5 5
Carbanak 6 13
QakBot 10 56
GraceWire Malware 4 5
Shlayer Trojan 5 35
CYRAT Ransomware 3 8
Trickbot Malware 5 13
ExileRAT 2 2
Data Breaches
5 Tips for Triaging Risk from Exposed CredentialsDark Reading: – Sep 02 2020 15:30Not all exposed usernames and passwords present a threat. Here's how to quickly identify the ones that do.
SonicWall Left Users Exposed To Vulnerable API For 14 DaysSecurityPhresh – Sep 03 2020 05:44LinkedIn poke at chief executive accelerated fix.
28,000 exposed printers hacked to highlight lack of printer securityHackRead – Sep 02 2020 14:21By Waqas Researchers forced 28,000 printers worldwide to print out guidelines on printer security. This is a post from HackRead.com Read the original post: …
U.S. Court: Mass Surveillance Program Exposed By Snowden Was IllegalSecurityPhresh – Sep 03 2020 01:56Two reputable national polls released Wednesday suggest different trajectories for the presidential race, but agree on where it stands at the end of both main political conventions, as the start of the final sprint to Nov. 3. A poll from Grinnell…
Hacker Groups
kaspersky – Transparent Tribe (aka PROJECTM and MYTHIC LEOPARD), is a highly prolific group whose activities can be traced as f… https://t.co/gFJqMjseggkaspersky – Twitter – Sep 02 2020 18:00Transparent Tribe (aka PROJECTM and MYTHIC LEOPARD), is a highly prolific group whose activities can be traced as far back as 2013. Over the past year, the group has started massive infection campaigns and developed new tools….
TA542 Fortifies Emotet’s Attack TacticsCyware – Sep 02 2020 18:25TA542 (aka Mummy Spider), the cybercrime group linked to the development of the Emotet malware, has returned with some new tricks and tactics. What happened? In August 2020 , TA542 was seen running email campaigns distributing Emotet malware, with…
Synthetix Becomes The Latest DeFi Project To Fully Integrate Chainlink’s Decentralized OraclesBitcoin Exchange Guide – RSS – Sep 02 2020 20:18Decentralized finance protocol, Synthetix, an exchange for trading synthetic assets on the Ethereum blockchain, is moving towards full decentralization. In a blog post published on Sept. 1, the platform will integrate Chainlink’s decentralized oracles…
YourAnonCentral – Anonymous has been busy worldwide; most actions go unnoticed or unannounced. While hacktivism has its merits it can… https://t.co/lykPfsV3NPYourAnonCentral – Twitter – Sep 03 2020 05:06Anonymous has been busy worldwide; most actions go unnoticed or unannounced. While hacktivism has its merits it can never replace the power felt by the masses in the streets. Together we can all make a difference. You are not an audience you are our…
Malware
Qbot Trojan: A Quick Analysis of a Decade-Old Banking TrojanCyware – Sep 02 2020 18:25Qbot, also known as QakBot, is a baking Trojan that comes with information-stealing and stealth capabilities. Active since 2008, this bot has been recently used in an Emotet attack campaign. Even after a decade, its main goal remained the same;…
Anubis Malware that Attacks Windows UsersE Hacking News – Sep 02 2020 19:23In a recent cybersecurity incident, Microsoft reports of a new malware called 'Anubis.' Anubis is not related to any banking malware and is famous for attacking windows systems and devices. Recently, the MSI Microsoft Security Intelligence discovered…
DLL Fixer leads to Cyrat RansomwareOffice of Inadequate Security – Sep 02 2020 16:00Karsten Hahn writes about a new ransomware, Cyrat: While hunting for new malware we often use Yara rules to find suspicious…
JAMESWT_MHT – RT @malwrhunterteam: TFW you see a ransomware sample not even got 10 detections on VT yesterday despite it was signed with a cert that was…JAMESWT_MHT – Twitter – Sep 02 2020 09:55RT @malwrhunterteam: TFW you see a ransomware sample not even got 10 detections on VT yesterday despite it was signed with a cert that was already used to sign at least one Maze ransomware sample more than a month ago…
😫
cc @VK_Intel
Vulnerabilities
SecurityWeek – Google Increases Bug Bounty Payouts for Abuse Risk Flaws https://t.co/ZDtM7QExBJSecurityWeek – Twitter – Sep 02 2020 21:23Google Increases Bug Bounty Payouts for Abuse Risk Flaws https://www.securityweek.com/google-increases-bug-bounty-payouts-abuse-risk-flaws
Comment: Latest Docker Container Attack Highlights Remote Networking FlawsInformation Security Buzz – Sep 02 2020 15:54It has been reported  that a security flaw that provides a backdoor through which Docker containers can be compromised via unsecured remote connections may require IT teams to revisit their approach to DevSecOps.
Google Increases Bug Bounty Payouts For Abuse Risk FlawsSecurityPhresh – Sep 02 2020 21:24Google this week increased the reward amounts paid to researchers for reporting abuse risk as part of its bug bounty program.read more
threatpost – #Cisco says hackers are actively exploiting unpatched #security flaws in its carrier-grade routers, allowing them t… https://t.co/UsVB3ck8i1threatpost – Twitter – Sep 02 2020 12:35#Cisco says hackers are actively exploiting unpatched #security flaws in its carrier-grade routers, allowing them to crash devices.
https://threatpost.com/cisco-warns-of-active-exploitation-of-flaw-in-carrier-grade-routers/158887/
Ongoing Campaigns
Weekly Threat Briefing: Malware, Lazarus Group, Vulnerabilities and MoreThreatStream Blog – Sep 02 2020 14:00The various threat intelligence stories in this iteration of the Weekly Threat Briefing discuss the following topics: APT, Cryptojacking, DDoS, North Korea, Shlayer, Trojan, and Vulnerabilities. The IOCs related to these…
DDoS Extortion Attacks Leave Several Retail and Finance Firms BleedingCyware – Sep 02 2020 19:24A group of attackers has been found targeting organizations with DDoS attacks, and asking for ransom from organizations across the U.S., the U.K., and the Asia Pacific, specifically those in the finance, travel, and e-commerce sectors. What happened?…
Chinese Hackers Target Europe, Tibetans With ‘Sepulcher’ MalwareSecurity Week – Sep 03 2020 02:17A Chinese threat actor was observed targeting both European diplomatic entities and the Tibetan community with the same strain of malware. Tracked as APT TA413 and previously associated with LuckyCat and ExileRAT malware, the threat actor has been…
InfoSecHotSpot – Organizations facing nearly 1,200 phishing attacks each month A new study found that email phishing attacks have be… https://t.co/E4snjJzyTqInfoSecHotSpot – Twitter – Sep 02 2020 22:28Organizations facing nearly 1,200 phishing attacks each month A new study found that email phishing attacks have become more successful during the COVID-19 pandemic. https://tek.io/2ERlqhj…

Although Silobreaker has relied on what it regards as reliable sources while compiling the content herein, Silobreaker cannot guarantee the accuracy, completeness, integrity or quality of such content and no responsibility is accepted by Silobreaker in respect of such content. Readers must determine for themselves what reliance they should place on the compiled content herein.

This website uses cookies.
See our privacy policy at www.silobreaker.com/legal