06 April 2021

This alert was created automatically by our award-winning intelligence product Silobreaker Online. Story selection is determined by an algorithm and based on a set of queries initially set by a Silobreaker user. Contact us here for more information.

Heat – Trending Malware and Threat Actors
Name Heat 1 Heat 7 Vol 1 Vol 7
Goblin Panda 5 5
More_eggs Malware 4 4
Clop Ransomware 6 18
Golden Chickens 2 2
Sunburst Backdoor 3 6
DarkSide Ransomware 2 2
APT10 2 18
RedCore RAT 1 1
Core Ransomware 1 1
Lockout Ransomware 1 1
Data Breaches
How to check if your info was exposed in the Facebook data leak hxxps://www[.]bleepingcomputer[.]com/news/security/how-to-check-if-your-info-was-exposed-in-the-facebook-data-leak/Secnewsbytes – Twitter – Apr 05 2021 07:12How to check if your info was exposed in the Facebook data leak hxxps://www[.]bleepingcomputer[.]com/news/security/how-to-check-if-your-info-was-exposed-in-the-facebook-data-leak/
2,5M+ users can check whether their data were exposed in Facebook data leakSecurity Affairs – Apr 05 2021 15:19You can check if your personal information is included in the Facebook data leak by querying the data breach notification service Have I Been Pwned. The news of the …
Capital One Warns of More Data Leaked in 2019 BreachBankInfoSecurity – Apr 05 2021 18:10Additional Social Security Numbers May Have…
2,5M+ users can check whether their data were exposed in #Facebook data leak
hxxps://securityaffairs[.]co/wordpress/116371/data-breach/facebook-leak-check.html
#securityaffairs #hacking
securityaffairs – Twitter – Apr 05 2021 18:162,5M+ users can check whether their data were exposed in #Facebook data leak
hxxps://securityaffairs[.]co/wordpress/116371/data-breach/facebook-leak-check.html
#securityaffairs #hacking
Hacker Groups
Charming Kitten and Medical Researchers – A Cat and Mouse GameCyware – Apr 05 2021 20:28Have you heard of BadBlood? No, not the song. It is this spearphishing campaign whose purpose was to steal credentials from medical professionals. The campaign has finally been linked to the Charming Kitten APT. What’s going on? This late-2020…
Sophos identifies connection between Mount Locker and Astro Locker team ransomwareSecurityMagazine.com – Apr 05 2021 12:00Sophos published a new report on a recently uncovered connection between the Mount Locker ransomware group and a new group, called “Astro Locker Team.”
China-Linked ‘Cycldek’ Hackers Target Vietnamese Government, MilitarySecurity Week – Apr 05 2021 22:18China-linked cyber-espionage group Cycldek is showing increasing sophistication in a series of recent attacks targeting government and military entities in Vietnam, according to a report from anti-malware vendor Kaspersky. Active since at least 2013…
An old leaked Facebook database is now freely available. APT scanning for vulnerable FortiOS systems. Emissions tester hacked.The CyberWire – Apr 05 2021 16:06Citing a Business Insider report , the Washington Post writes that 533 million Facebook users’ personal information was dumped over the weekend to a hacking forum. The data are old and the leak isn't new (Facebook detected and fixed it in August…
Malware
Asteelflash Hit by REvil Ransomware AttackHeimdal Security Blog – Apr 05 2021 15:30On April 2nd, world-leading French electronics manufacturing services (EMS) company Asteelflash released a statement confirming the company has been the victim of a cybersecurity incident. The company affirms the attack was detected at the end of…
Unconventional ways the cybercriminal group known as Darkside, is threatening its ransomware victims to pay up. hxxps://kas[.]pr/dq7f hxxps://twitter[.]com/kaspersky/status/1379179024577089546/photo/1kaspersky – Twitter – Apr 05 2021 21:07Unconventional ways the cybercriminal group known as Darkside, is threatening its ransomware victims to pay up. hxxps://kas[.]pr/dq7f hxxps://twitter[.]com/kaspersky/status/1379179024577089546/photo/1
The Changing Nature of the Ransomware Menace Today SentinelOne – Apr 05 2021 16:03Ransomware is on the rise again, and dramatically so. Reports on the increases year on year vary: Group-IB’s analysis of more than 500 attacks during their own incident response engagements estimated that …
Black Kingdom Ransomware Jumps on the Exchange ExpressSecurity Bloggers Network – Apr 05 2021 07:00
Vulnerabilities
VMware Patches Critical Flaw in Carbon Black Cloud Workload – hxxps://www[.]securityweek[.]com/vmware-patches-critical-flaw-carbon-black-cloud-workloadSecurityWeek – Twitter – Apr 05 2021 16:06VMware Patches Critical Flaw in Carbon Black Cloud Workload – hxxps://www[.]securityweek[.]com/vmware-patches-critical-flaw-carbon-black-cloud-workload
VMware Patches Critical Flaw in Carbon Black Cloud WorkloadSecurityWeek RSS Feed – Apr 05 2021 15:51A critical vulnerability recently addressed in the VMware Carbon Black Cloud Workload could be abused to execute code on a vulnerable server, according to a warning from a security researcher who discovered the bug.  …
This man thought opening a TXT file is fine, he thought wrong. macOS CVE-2019-8761Reddit – Netsec – Apr 05 2021 07:23submitted by /u/albinowax [link]…
Ongoing Campaigns
Supply chain attacks: what we know about the SolarWinds ‘Sunburst’ exploit, and why it still mattersCheck Point – Apr 05 2021 13:19The word ‘unprecedented’ has been used a lot over the past year, and with good reason given the huge impact of COVID-19 on societies and businesses around the world.  Alongside the global pandemic, there was the volatile and bitter U.S. election and…
A41APT: An APT Campaign, a Multi-Layer Malware, and Japanese TargetsCyware – Apr 05 2021 20:28Let’s go back to 2019. An APT campaign, conducted by APT10, was spotted that targeted various sectors, most prominently the Japanese manufacturing sector and its overseas operations. Dubbed A41APT, the purpose of the campaign was to steal…
Once Again, North Korean Hackers Target Security ResearchersCyware – Apr 05 2021 20:28North Korea-based threat actors are once again targeting security researchers via fake LinkedIn and Twitter accounts. According to Google's Threat Analysis Group (TAG), the attackers created a website for a fake company offering offensive security…
5th April – Threat Intelligence ReportCheck Point Research – RSS – Apr 05 2021 16:14For the latest discoveries in cyber research for the week of 5th April, please download our Threat Intelligence Bulletin. Top Attacks and Breaches Personal information of some 553 million Facebook users from 100 countries…

Although Silobreaker has relied on what it regards as reliable sources while compiling the content herein, Silobreaker cannot guarantee the accuracy, completeness, integrity or quality of such content and no responsibility is accepted by Silobreaker in respect of such content. Readers must determine for themselves what reliance they should place on the compiled content herein.

Silobreaker
This website uses cookies.
See our privacy policy at www.silobreaker.com/legal