04 January 2021

This alert was created automatically by our award-winning intelligence product Silobreaker Online. Story selection is determined by an algorithm and based on a set of queries initially set by a Silobreaker user. Contact us here for more information.

Heat – Trending Malware and Threat Actors
Name Heat 1 Heat 7 Vol 1 Vol 7
Shiny Hunters 1 1
Shade Ransomware 1 4
Anonymous Group 1 1
Phorpiex Malware 1 1
NotPetya Ransomware 2 6
Nefilim Ransomware 1 12
WannaCry Ransomware 1 3
Lazarus Group 1 3
SUPERNOVA Webshell 2 23
APT32 1 4
Data Breaches
Secnewsbytes – SolarWinds was warned about potential cyber attack, cost-saving move to Europe may have exposed firm | Daily Mail O… https://t.co/V9v2Q97sLOSecnewsbytes – Twitter – Jan 04 2021 02:30SolarWinds was warned about potential cyber attack, cost-saving move to Europe may have exposed firm | Daily Mail Online https://www.dailymail.co.uk/news/article-9108511/SolarWinds-warned-potential-cyber-attack-cost-saving-Europe-exposed-firm.html
InfosecurityMag – The top story of the year is our feature that exposed another security credential blow at Zoom as the platform expo… https://t.co/Wo9hraOe9KInfosecurityMag – Twitter – Jan 03 2021 10:00The top story of the year is our feature that exposed another security credential blow at Zoom as the platform exposed thousands of private user videos online. Read more>>…
securityaffairs – RT @3cSoc: Top data breaches of 2020. Data from major cyber security firms revealed that tens of billion records have been exposed in data…securityaffairs – Twitter – Jan 03 2021 14:44RT @3cSoc: Top data breaches of 2020. Data from major cyber security firms revealed that tens of billion records have been exposed in data breaches exposed. A list of top incidents .. Thanks @securityaffairs…
InfoSecHotSpot – SolarWinds cybersecurity expert warned management in 2017 about risk of ‘catastrophic’ breach– as it’s revealed cos… https://t.co/boOHCvyO1qInfoSecHotSpot – Twitter – Jan 03 2021 22:58SolarWinds cybersecurity expert warned management in 2017 about risk of 'catastrophic' breach– as it’s revealed cost-saving move to Eastern Europe could have exposed firm … Trump, a former cybersecurity adviser at SolarWinds, said he urged…
Hacker Groups
anon_indonesia – The Anonymous Indonesia News Daily is out! https://t.co/QNaCvquCNv #education #jobsresetanon_indonesia – Twitter – Jan 04 2021 03:14The Anonymous Indonesia News Daily is out! https://paper.li/anon_indonesia/1435572762?edition_id=fefa5360-4e3a-11eb-a9a9-002590a5ba2d #education #jobsreset
hackerfantastic – RT @Zen_Moments: Nobody cares about what you know. It’s what you do with what you know that matters. ~ Anonymoushackerfantastic – Twitter – Jan 04 2021 05:01RT @Zen_Moments: Nobody cares about what you know. It's what you do with what you know that matters. ~ Anonymous
APT32 Multi-stage macOS Trojan Innovates on Crimeware Scripting TechniqueReddit – BlueTeamSec – RSS – Jan 03 2021 19:49submitted by /u/malware_bender [link]…
A Vast and Ignored Russian Threat | The Dark Reality of Betting Against QAnon | Protecting the U.S. Food SystemHomeland Security News Wire – Jan 04 2021 01:22· As Understanding of Russian Hacking Grows, So Does Alarm · Cyberattack on U.S. Government Is Just Part of a Vast and Ignored Russian Threat · Microsoft Says Russian Hackers Viewed Some of Its Source Code · SolarWinds Hackers Accessed Microsoft Source…
Malware
Jan0fficial – @tbarabosch tbh i stopped looking into ransomware after the wannacry accident.. so i’m not that familiar with the d… https://t.co/hy6iV7t0CgJan0fficial – Twitter – Jan 03 2021 21:40@tbarabosch tbh i stopped looking into ransomware after the wannacry accident.. so i'm not that familiar with the data contained in the newer RW samples.. but signatures need to be made to protect the population against the most shitty and evil…
kaspersky – Ransomware never seems to go out of style. In fact, it has evolved to become more than just encrypting your data. H… https://t.co/Fz0UA4sUqfkaspersky – Twitter – Jan 03 2021 17:00Ransomware never seems to go out of style. In fact, it has evolved to become more than just encrypting your data. Here's everything you need to know about staying protected from modern ransomware and where to find free ransomware protection….
Phorpiex / Insecure permissions EoPSeclists.org – Full Disclosure – Jan 03 2021 22:57Posted by malvuln on Jan 03 Discovery / credits: malvuln – Malvuln.com (c) 2021 Original source:…
Why Small and Medium-Sized Professional Service Firms Are a Big Target for Ransomware AttacksSecurity Bloggers Network – Jan 03 2021 17:28See the realities of ransomware attacks on small and medium-sized professional service firms and what factors lead to increased vulnerability. The post …
Vulnerabilities
bad_packets – Mass scanning activity detected from 45.156.185.42 (🇮🇷) checking for SolarWinds Orion hosts vulnerable to CVE-2020-… https://t.co/KFX69qjB45bad_packets – Twitter – Jan 03 2021 20:46Mass scanning activity detected from 45.156.185.42 (🇮🇷) checking for SolarWinds Orion hosts vulnerable to CVE-2020-10148 (https://kb.cert.org/vuls/id/843464). #threatintel
Serious security vulnerability discovered in Xyzel network devicesSiliconANGLE – Jan 04 2021 02:33A serious security vulnerability has be discovered in firewalls, virtual private network gateways and access point controllers manufactured by Xyzel Communications Corp. Detailed by security researchers at Dutch cybersecurity firm Eye Control, the…
Securityblog – RT @bad_packets: Mass scanning activity detected from 45.91.94.163 (🇦🇹) checking for SolarWinds Orion hosts vulnerable to CVE-2020-10148 (h…Securityblog – Twitter – Jan 03 2021 15:09RT @bad_packets: Mass scanning activity detected from 45.91.94.163 (🇦🇹) checking for SolarWinds Orion hosts vulnerable to CVE-2020-10148 (https://www.kb.cert.org/vuls/id/843464). #threatintel
Securityblog – RT @bad_packets: Mass scanning activity detected from 45.156.185.42 (🇮🇷) checking for SolarWinds Orion hosts vulnerable to CVE-2020-10148 (…Securityblog – Twitter – Jan 03 2021 21:40RT @bad_packets: Mass scanning activity detected from 45.156.185.42 (🇮🇷) checking for SolarWinds Orion hosts vulnerable to CVE-2020-10148 (https://kb.cert.org/vuls/id/843464). #threatintel
Ongoing Campaigns
#Solorigate : SUPERNOVA forensics using Code Property GraphSecurity Bloggers Network – Jan 03 2021 13:04#Solorigate : SUPERNOVA forensics using Code Property Graph The fallout of SolarWinds compromise has resulted in a bevy of new malware families, each with different characteristics and behaviors….
Security Affairs newsletter Round 295Security Affairs – Jan 03 2021 11:25A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box….
Vigil@nce – F5 BIG-IP: privilege escalation via Brute Force Attack Prevention Bypass, analyzed on 03/11/2020Vigil@nce – public vulnerabilities – Jan 03 2021 07:36An attacker can bypass restrictions via Brute Force Attack Prevention Bypass of F5 BIG-IP, in order to escalate his privileges.
Protecting Home Office and Enterprise in 2021, (Sat, Jan 2nd)SANS Internet Storm Center, InfoCON: green – Jan 03 2021 13:31Because of COVID, 2020 saw a major shift from working at the "office" to working at home which led to shift the attacks to the user @home. Everything points that 2020 was a year for ransomware and COVID-19 themed campaigns. Without…

Although Silobreaker has relied on what it regards as reliable sources while compiling the content herein, Silobreaker cannot guarantee the accuracy, completeness, integrity or quality of such content and no responsibility is accepted by Silobreaker in respect of such content. Readers must determine for themselves what reliance they should place on the compiled content herein.

Silobreaker
This website uses cookies.
See our privacy policy at www.silobreaker.com/legal