05 April 2021

This alert was created automatically by our award-winning intelligence product Silobreaker Online. Story selection is determined by an algorithm and based on a set of queries initially set by a Silobreaker user. Contact us here for more information.

Heat – Trending Malware and Threat Actors
Name Heat 1 Heat 7 Vol 1 Vol 7
Gitpaste-12 Malware 1 1
Octopus Scanner 1 2
DEWMODE 1 1
Shiny Hunters 1 1
UNC2546 1 2
Avaddon Ransomware 1 3
Sibot 1 2
Sunshuttle Backdoor 1 3
FIN11 1 5
CryptoLocker 1 5
Data Breaches
How to check if your info was exposed in the Facebook data leakBleepingComputer.com – Apr 04 2021 18:28Data breach notification service Have I Been Pwned can now be used to check if your personal information was exposed in yesterday's Facebook data leak that contains the phone numbers and information for over 500 million users. […]
How to check if your info was exposed in the Facebook data leak – @LawrenceAbrams
hxxps://www[.]bleepingcomputer[.]com/news/security/how-to-check-if-your-info-was-exposed-in-the-facebook-data-leak/
BleepinComputer – Twitter – Apr 04 2021 18:28How to check if your info was exposed in the Facebook data leak – @LawrenceAbrams
hxxps://www[.]bleepingcomputer[.]com/news/security/how-to-check-if-your-info-was-exposed-in-the-facebook-data-leak/
Capital One notifies more clients of SSNs exposed in 2019 data breachDataBreaches.net – Apr 04 2021 13:43Sergiu Gatlan reports: US bank Capital One notified additional customers that their Social Security numbers were exposed in a data breach announced in July 2019. The day the breach was disclosed, the Department of Justice arrested and indicted the…
@_darrenmartyn I don’t know if it has been reported. From what I gather this data is from a breach back in 2019 and is not a new breach (according to Facebook)BrianHonan – Twitter – Apr 04 2021 18:24@_darrenmartyn I don’t know if it has been reported. From what I gather this data is from a breach back in 2019 and is not a new breach (according to Facebook)
Hacker Groups
The Anonymous Indonesia News Daily is out! hxxps://paper[.]li/anon_indonesia/1435572762?edition_id=51adbbf0-95bd-11eb-babe-fa163e6ccaff Stories via @JogjaUpdate #standwithtillie #jakpostanon_indonesia – Twitter – Apr 05 2021 03:16The Anonymous Indonesia News Daily is out! hxxps://paper[.]li/anon_indonesia/1435572762?edition_id=51adbbf0-95bd-11eb-babe-fa163e6ccaff Stories via @JogjaUpdate #standwithtillie #jakpost
Hackers Setup Fake Cyber Security Firm To Target Security Researchers Google’s Threat Analysis Group (TAG), a Google security team specialized in hunting advanced persistent threat (APT) groups, on Wednesday shared that a North Korean government-backed… hxxps://binged[.]it/3dCHzx6 hxxps://twitter[.]com/InfoSecHotSpot/status/1378824975470186502/photo/1InfoSecHotSpot – Twitter – Apr 04 2021 21:41Hackers Setup Fake Cyber Security Firm To Target Security Researchers Google’s Threat Analysis Group (TAG), a Google security team specialized in hunting advanced persistent threat (APT) groups, on Wednesday shared that a North Korean…
Hackers Setup Fake Cyber Security Firm To Target Security Researchers Google’s Threat Analysis Group (TAG), a Google security team specialized in hunting advanced persistent threat (APT) groups, on Wednesday shared that a North Korean government-backed… hxxps://binged[.]it/3fTceJB hxxps://twitter[.]com/InfoSecHotSpot/status/1378749464890970130/photo/1InfoSecHotSpot – Twitter – Apr 04 2021 16:41Hackers Setup Fake Cyber Security Firm To Target Security Researchers Google’s Threat Analysis Group (TAG), a Google security team specialized in hunting advanced persistent threat (APT) groups, on Wednesday shared that a North Korean…
Hackers Setup Fake Cyber Security Firm To Target Security Researchers Google’s Threat Analysis Group (TAG), a Google security team specialized in hunting advanced persistent threat (APT) groups, on Wednesday shared that a North Korean government-backed… hxxps://binged[.]it/3sLiPZY hxxps://twitter[.]com/InfoSecHotSpot/status/1378711740674940935/photo/1InfoSecHotSpot – Twitter – Apr 04 2021 14:11Hackers Setup Fake Cyber Security Firm To Target Security Researchers Google’s Threat Analysis Group (TAG), a Google security team specialized in hunting advanced persistent threat (APT) groups, on Wednesday shared that a North Korean…
Malware
Turns out it’s Linux version of HelloKitty. Would still like a malware sample, only have decryptor samples so far.demonslay335 – Twitter – Apr 04 2021 18:04Turns out it's Linux version of HelloKitty. Would still like a malware sample, only have decryptor samples so far.
USA to publish detailed analysis of SolarWinds hacking tools The report details 18 pieces of malware used in the attack, including the Sunshuttle backdoor, China Copper webshell and covert Sibot tool hxxps://bit[.]ly/3un3u22 hxxps://twitter[.]com/InfoSecHotSpot/status/1378802341395173379/photo/1InfoSecHotSpot – Twitter – Apr 04 2021 20:11USA to publish detailed analysis of SolarWinds hacking tools The report details 18 pieces of malware used in the attack, including the Sunshuttle backdoor, China Copper webshell and covert Sibot tool hxxps://bit[.]ly/3un3u22…
Clop Ransomware operators plunder US universitiesSecurity Affairs – Apr 04 2021 11:54Clop ransomware gang leaked online data stolen from Stanford Medicine, University of Maryland Baltimore, and the University of California. Clop…
RT @stuartjash: New rules for XProtect. Apple keeps pushing out hashes for this XCSSET malware, still no yara rule. That malware is fascinating and worth digging in to. 👀

hxxps://www[.]jamf[.]com/blog/apple-has-pushed-a-new-update-to-xprotectSecurityblog – Twitter – Apr 04 2021 16:24RT @stuartjash: New rules for XProtect. Apple keeps pushing out hashes for this XCSSET malware, still no yara rule. That malware is fascinating and worth digging in to. 👀

hxxps://www[.]jamf[.]com/blog/apple-has-pushed-a-new-update-to-xprotect

Vulnerabilities
Call Recorder iPhone App Flaw Uncovered #Cybersecurity #security #ui hxxps://www[.]darkreading[.]com/vulnerabilities—threats/call-recorder-iphone-app-flaw-uncovered/d/d-id/1340362cybersecboardrm – Twitter – Apr 04 2021 20:36Call Recorder iPhone App Flaw Uncovered #Cybersecurity #security #ui hxxps://www[.]darkreading[.]com/vulnerabilities—threats/call-recorder-iphone-app-flaw-uncovered/d/d-id/1340362
Patching moves along on Microsoft flaws, but hackers are still meddling

hxxps://www[.]cyberscoop[.]com/microsoft-flaws-patching-ransomware-cryptomining/ hxxps://twitter[.]com/CyberScoopNews/status/1378759779187822595/photo/1CyberScoopNews – Twitter – Apr 04 2021 17:22Patching moves along on Microsoft flaws, but hackers are still meddling

hxxps://www[.]cyberscoop[.]com/microsoft-flaws-patching-ransomware-cryptomining/ hxxps://twitter[.]com/CyberScoopNews/status/1378759779187822595/photo/1

ios Vulnerabilitiesblackhat library – Apr 04 2021 09:20div class="md"> Hi all does anyone know where to find ios vulnerabilities links/hidden.-links? submitted by /u/yellow-sugar [link]…
Advanced hackers use Fortinet flaws in likely attempt to breach government networks, feds warn

hxxps://www[.]cyberscoop[.]com/fortinet-apt-exploit-cisa-fbi/CyberScoopNews – Twitter – Apr 05 2021 01:11Advanced hackers use Fortinet flaws in likely attempt to breach government networks, feds warn

hxxps://www[.]cyberscoop[.]com/fortinet-apt-exploit-cisa-fbi/

Ongoing Campaigns
Week in review: PHP supply chain attack, common zero trust traps, hardening CI/CD pipelinesHelp Net Security – News – Apr 04 2021 07:55Here’s an overview of some of last week’s most interesting news and articles: Attackers tried to insert backdoor into PHP source code The PHP development team has averted an attempted supply chain compromise that could have opened a backdoor into…
Security Affairs newsletter Round 308Security Affairs – Apr 04 2021 14:11A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. If you want to receive the complete weekly Security Affairs Newsletter for free,…
Why Banks Are Still A Top Target For DDoS Attacks
hxxps://www[.]imperva[.]com/blog/why-banks-are-still-a-top-target-for-ddos-attacks/
Bank_Security – Twitter – Apr 04 2021 20:03Why Banks Are Still A Top Target For DDoS Attacks
hxxps://www[.]imperva[.]com/blog/why-banks-are-still-a-top-target-for-ddos-attacks/
Week in review: PHP supply chain attack, common zero trust traps, hardening CI/CD pipelines – hxxps://www[.]helpnetsecurity[.]com/2021/04/04/week-in-review-php-supply-chain-attack-common-zero-trust-traps-hardening-ci-cd-pipelines/ hxxps://twitter[.]com/helpnetsecurity/status/1378618741928423428/photo/1helpnetsecurity – Twitter – Apr 04 2021 08:01Week in review: PHP supply chain attack, common zero trust traps, hardening CI/CD pipelines – hxxps://www[.]helpnetsecurity[.]com/2021/04/04/week-in-review-php-supply-chain-attack-common-zero-trust-traps-hardening-ci-cd-pipelines/…

Although Silobreaker has relied on what it regards as reliable sources while compiling the content herein, Silobreaker cannot guarantee the accuracy, completeness, integrity or quality of such content and no responsibility is accepted by Silobreaker in respect of such content. Readers must determine for themselves what reliance they should place on the compiled content herein.

Silobreaker
This website uses cookies.
See our privacy policy at www.silobreaker.com/legal