05 November 2020

This alert was created automatically by our award-winning intelligence product Silobreaker Online. Story selection is determined by an algorithm and based on a set of queries initially set by a Silobreaker user. Contact us here for more information.

Heat – Trending Malware and Threat Actors
Name Heat 1 Heat 7 Vol 1 Vol 7
KPOT Stealer Malware 17 23
Sodinokibi Ransomware 20 46
RegretLocker Ransomware 8 18
Sekhmet Ransomware 5 7
UNC1945 5 24
UNKN 3 8
Conti Ransomware 3 9
Amadey 2 2
1ms0rry 2 2
Hancitor 2 2
Data Breaches
threatpost – #Cannabis journaling platform #GrowDiaries exposed 3.4 million user records online – many from countries where pot… https://t.co/oebfS71QDYthreatpost – Twitter – Nov 05 2020 02:00#Cannabis journaling platform #GrowDiaries exposed 3.4 million user records online – many from countries where pot is illegal.
https://threatpost.com/growdiaries-emails-passwords-cannabis-growers/160969/
troyhunt – Got a hold of this and will investigate today, not immediately clear how much is unknown versus previously reported… https://t.co/yt729VQD3ktroyhunt – Twitter – Nov 04 2020 20:29Got a hold of this and will investigate today, not immediately clear how much is unknown versus previously reported breaches
circl_lu – RT @jeremiahg: Many InfoSec industry reports state that exposed Remote Desktop Protocol (RDP) ports are a leading cause of breaches. One cy…circl_lu – Twitter – Nov 04 2020 10:41RT @jeremiahg: Many InfoSec industry reports state that exposed Remote Desktop Protocol (RDP) ports are a leading cause of breaches. One cyber-insurance carrier told me they will not write policies for those with open RDP. So, I was curious how…
Secnewsbytes – RT @jeremiahg: Many InfoSec industry reports state that exposed Remote Desktop Protocol (RDP) ports are a leading cause of breaches. One cy…Secnewsbytes – Twitter – Nov 04 2020 08:34RT @jeremiahg: Many InfoSec industry reports state that exposed Remote Desktop Protocol (RDP) ports are a leading cause of breaches. One cyber-insurance carrier told me they will not write policies for those with open RDP. So, I was curious how…
Hacker Groups
ShinyHunters hacker leaks 5.22GB worth of Masahble.com databaseHackRead – Nov 05 2020 00:45By Waqas ShinyHunters leaked the database earlier today and revealed that it does not contain any password. This is a post from HackRead.com Read the original post: …
threatpost – The UNC1945 threat group has been compromising #telecom firms by exploiting an #Oracle Solaris flaw. (via @FireEye)
https://t.co/u7pA2K2jzk
threatpost – Twitter – Nov 04 2020 13:20The UNC1945 threat group has been compromising #telecom firms by exploiting an #Oracle Solaris flaw. (via @FireEye)
https://threatpost.com/oracle-solaris-zero-day-attack/160929/
YourAnonNews – @Bogged20 Lulzsec was a prank. How did you miss that?YourAnonNews – Twitter – Nov 04 2020 10:25@Bogged20 Lulzsec was a prank. How did you miss that?
Malware
Spike in Emotet activity could mean big payday for ransomware gangsZDNet Security – Nov 04 2020 14:51A big rise in Emotet attacks has provided hackers with more machines to offer up to other cyber criminals for ransomware and other malware campaigns.
REvil ransomware gang ‘acquires’ KPOT malwareMalwareTips.com – Nov 04 2020 19:44The operators of the REvil ransomware strain have "acquired" the source code of the KPOT trojan in an auction held on a hacker forum last month. he operators of the REvil ransomware strain… Click to expand……
ZDNet – REvil ransomware gang ‘acquires’ KPOT malware https://t.co/mbMz6VFYnEZDNet – Twitter – Nov 04 2020 17:15REvil ransomware gang 'acquires' KPOT malware…
ZDNet – REvil ransomware gang ‘acquires’ KPOT malware https://t.co/xNZ9jK1Y07ZDNet – Twitter – Nov 05 2020 04:15REvil ransomware gang 'acquires' KPOT malware…
Vulnerabilities
securityaffairs – #Oracle issues emergency patch for CVE-2020-14750 #WebLogic Server flaw
https://t.co/j6mFYltxsr
#securityaffairs #hacking
securityaffairs – Twitter – Nov 04 2020 08:23#Oracle issues emergency patch for CVE-2020-14750 #WebLogic Server flaw

Oracle issues emergency patch for CVE-2020-14750 WebLogic Server flaw


#securityaffairs #hacking

circl_lu – You patched your weblogic for CVE-2020-14882 – don’t forget to patch it again against CVE-2020-14882 with the patch… https://t.co/eVbwlh7x3Mcircl_lu – Twitter – Nov 04 2020 10:53You patched your weblogic for CVE-2020-14882 – don't forget to patch it again against CVE-2020-14882 with the patch CVE-2020-14750 https://cve.circl.lu/cve/CVE-2020-14750 – more details: https://twitter.com/breditor/status/1323435476380864512
You…
Google fixes two actively exploited Chrome zero-days (CVE-2020-16009, CVE-2020-16010)Help Net Security – News – Nov 04 2020 12:03For the third time in two weeks, Google has patched Chrome zero-day vulnerabilities that are being actively exploited in the wild: CVE-2020-16009 is present in the desktop version of the browser, CVE-2020-16010 in the mobile (Android) version….
VMware Issues Updated Fix For Critical ESXi FlawThreatpost.com – Nov 04 2020 16:17A previous fix for the critical remote code execution bug was "incomplete," according to VMware.
Ongoing Campaigns
REvil Ransomware member win the auction for KPot stealer source codeSecurity Affairs – Nov 04 2020 17:06The source code for the KPot information stealer was put up for auction and the REvil ransomware operators want to acquire it. The authors of KPot…
Newly discovered ‘RegretLocker’ ransomware targets Windows virtual machinesSiliconANGLE – Nov 05 2020 02:14A new sophisticated form of ransomware has been detected in the wild that uses advanced techniques to encrypt virtual machines. First detailed today by Bleeping Computer, “RegretLocker” was discovered in October. Specifically targeting…
Emotet Attacks Continue to Soar as Botnet Spreads GloballyBankInfoSecurity – Nov 04 2020 20:11Researchers Say Spike In Emotet Infections…
Cyber Security Roundup for November 2020Security Bloggers Network – Nov 04 2020 23:42A roundup of UK focused Cyber and Information Security News, Blog Posts, Reports and general Threat Intelligence from the previous calendar month, October 2020.

Although Silobreaker has relied on what it regards as reliable sources while compiling the content herein, Silobreaker cannot guarantee the accuracy, completeness, integrity or quality of such content and no responsibility is accepted by Silobreaker in respect of such content. Readers must determine for themselves what reliance they should place on the compiled content herein.

Silobreaker Daily Cyber Alert

Sign up for the latest news on data breaches, hacker groups, malware and vulnerabilities.

Silobreaker
This website uses cookies.
See our privacy policy at www.silobreaker.com/legal