04 May 2021

This alert was created automatically by our award-winning intelligence product Silobreaker Online. Story selection is determined by an algorithm and based on a set of queries initially set by a Silobreaker user. Contact us here for more information.

Heat – Trending Malware and Threat Actors
Name Heat 1 Heat 7 Vol 1 Vol 7
Buer Loader 16 16
Magecart Group 5 5
Pay2Key Ransomware 4 5
Trickbot Malware 5 13
Dridex Malware 3 4
BazarBackdoor 2 2
Donot Team 2 2
APT30 2 14
UNC2717 2 3
UNC2630 2 4
Data Breaches
Experian API exposed credit scores of tens of millions of AmericansSecurity Affairs – May 03 2021 14:07Experian API Exposed Credit Scores of Most Americans could have been accessed due to a weakness with a partner website. Experian API exposed credit scores of tens of millions of Americans due to a weakness with a partner website. Anyone was…
Whitehall apprentices’ details exposed on dark web after cyberattack | hxxp://PublicTechnology[.]net hxxps://www[.]publictechnology[.]net/articles/news/whitehall-apprentices%E2%80%99-details-exposed-dark-web-after-cyberattackSecnewsbytes – Twitter – May 04 2021 01:49Whitehall apprentices’ details exposed on dark web after cyberattack | hxxp://PublicTechnology[.]net hxxps://www[.]publictechnology[.]net/articles/news/whitehall-apprentices%E2%80%99-details-exposed-dark-web-after-cyberattack
#Experian API exposed credit scores of tens of millions of Americans.
hxxps://securityaffairs[.]co/wordpress/117460/data-breach/experian-api-data-leak.html
#securityaffairs #dataleak
securityaffairs – Twitter – May 03 2021 19:35#Experian API exposed credit scores of tens of millions of Americans.
hxxps://securityaffairs[.]co/wordpress/117460/data-breach/experian-api-data-leak.html
#securityaffairs #dataleak
#Experian API exposed credit scores of tens of millions of Americans
hxxps://securityaffairs[.]co/wordpress/117460/data-breach/experian-api-data-leak.html
#securityaffairs #dataleak
securityaffairs – Twitter – May 03 2021 14:11#Experian API exposed credit scores of tens of millions of Americans
hxxps://securityaffairs[.]co/wordpress/117460/data-breach/experian-api-data-leak.html
#securityaffairs #dataleak
Hacker Groups
UNC2447 Exploiting SonicWall Zero-day to Breach NetworksCyware – May 03 2021 20:29A new ransomware group has been discovered that exploits a zero-day bug in Sonicwall SMA 100 Series VPN appliances. The ransomware group, identified as UNC2447, deploys the FiveHands ransomware on targeted networks of organizations located in North…
Magecart scammers aim at restaurants’ online delivery systems – CyberScoop hxxps://flip[.]it/Rp2sHxSecurityblog – Twitter – May 03 2021 19:12Magecart scammers aim at restaurants' online delivery systems – CyberScoop hxxps://flip[.]it/Rp2sHx
Transparent Tribe Operating with a New Variant of Crimson RATReddit – BlueTeamSec – RSS – May 03 2021 17:17submitted by /u/digicat [link]…
FBI and CISA have released new tactics being used by Russia’s SVR. SVR is also known as APT29 and CozyBear, and are believed responsible for Solarwinds and other attacks. hxxps://okt[.]to/lipRNfIOActive – Twitter – May 03 2021 17:58FBI and CISA have released new tactics being used by Russia’s SVR. SVR is also known as APT29 and CozyBear, and are believed responsible for Solarwinds and other attacks. hxxps://okt[.]to/lipRNf
Malware
A New Buer Malware Variant Has Been Written In Rust ProgrammingTHN : The Hacker News – May 03 2021 13:03Cybersecurity researchers on Monday disclosed a new malspam campaign distributing a fresh variant of a malware loader called 'Buer' written in Rust, illustrating how adversaries are constantly honing their malware toolsets to evade analysis. Dubbed…
Sodinokibi/REvil Ransomware AnalysisReverse Engineering – May 03 2021 11:35submitted by /u/jacob16682 [link]…
An ambitious plan to tackle ransomware faces long oddsHITBSecNews – May 03 2021 23:45An ambitious plan to tackle ransomware faces long odds l33tdawg Mon, 05/03/2021 – 23:45
WeSteal Stealer and WeControl RAT – The New Commodity Malware in TownCyware – May 03 2021 20:29A commodity cryptocurrency stealer, WeSteal, is available online without any intent of disguise by its authors. Moreover, the authors of this stealer had added new features, along with assisting the promotion of another commodity malware named…
Vulnerabilities
Apple issues security update for WebKit flawsCyberscoop – News – May 03 2021 21:53Apple released a series of security updates Monday to counter hackers actively exploiting two flaws affecting some later-generation iPhones, as well as a whole host of iPad and iPod models. The …
Apple issues security update for WebKit flaws hxxps://www[.]cyberscoop[.]com/apple-security-update-webkit-flaws-iphone-ipad-ipod/rootsecdev – Twitter – May 04 2021 00:36Apple issues security update for WebKit flaws hxxps://www[.]cyberscoop[.]com/apple-security-update-webkit-flaws-iphone-ipad-ipod/
Broken Authentication & Session Management Flaws: Causes & FixesMedium Cybersecurity – RSS – May 03 2021 10:57What is Broken Authentication? We answer the same and share a few ways you can stay a step ahead of such attacks. …
Pulse Secure VPN Zero-Day Flaw PatchedBank Info Security – May 03 2021 19:55Permanent Fix Replaces Earlier Work-Around Ivanti, parent company of Pulse Secure, published a permanent fix Monday for a zero-day vulnerability in Pulse Connect Secure VPN products that has been exploited to target U.S. government agencies, critical…
Ongoing Campaigns
Eliminating man-in-the-middle attacksSecurity Bloggers Network – May 03 2021 16:10In this blog post, we'll explore exactly what a man-in-the-middle attack is – and how you can prevent this kind of attack happening to you. The post …
Naikon APT Group is Now Using Nebulae BackdoorCyware – May 03 2021 20:29Naikon, a cyberespionage group from China, has been actively employing a new backdoor for multiple cyberespionage operations targeting military organizations in Southeast Asia. The backdoor, identified as Nebulae, is used for gaining persistence on…
Ryuk Ransomware Operators have Updated their Attack TechniquesCyware – May 03 2021 20:29In a recent trend, Ryuk ransomware operators have been discovered to be preferring hosts with RDPs exposed on the public internet. In addition, the group is using targeted phishing emails to spread its malware and gain initial access to the target…
Social Engineering: Watch Out for These Threats Against Cybersecurity ExpertsSecurity Intelligence – May 03 2021 17:30Many of us remember our parents saying not to take candy from strangers. Today, we can apply a similar mindset to avoid social engineering.  Social engineering is the threat that keeps on coming back. Threat actors are…

Although Silobreaker has relied on what it regards as reliable sources while compiling the content herein, Silobreaker cannot guarantee the accuracy, completeness, integrity or quality of such content and no responsibility is accepted by Silobreaker in respect of such content. Readers must determine for themselves what reliance they should place on the compiled content herein.

Silobreaker's Daily Cyber Alert

Sign up for the latest news on data breaches, hacker groups, malware and vulnerabilities.

Silobreaker
This website uses cookies.
See our privacy policy at www.silobreaker.com/legal