06 June 2021

This alert was created automatically by our award-winning intelligence product Silobreaker Online. Story selection is determined by an algorithm and based on a set of queries initially set by a Silobreaker user. Contact us here for more information.

Heat – Trending Malware and Threat Actors
Name Heat 1 Heat 7 Vol 1 Vol 7
Trickbot Malware 19 55
Trickbot Gang 5 12
WastedLocker 4 5
Evil Corp 3 5
EMOTET Trojan 4 7
BlackCocaine Ransomware 2 3
SharpPanda 2 12
Mailto Ransomware 2 3
Janeleiro 1 1
DOUBLEDROP 1 1
Data Breaches
Sensitive medical, financial data exposed in extortion incident at Massachusetts hospital 

hxxps://www[.]cyberscoop[.]com/hospital-ransomare-payment-sturdy-memorial/ hxxps://twitter[.]com/CyberScoopNews/status/1401135217902080003/photo/1CyberScoopNews – Twitter – Jun 05 2021 11:14Sensitive medical, financial data exposed in extortion incident at Massachusetts hospital 

hxxps://www[.]cyberscoop[.]com/hospital-ransomare-payment-sturdy-memorial/ hxxps://twitter[.]com/CyberScoopNews/status/1401135217902080003/photo/1

A hospital in Massachusetts quietly paid off a ransomware gang after a February hack that exposed patients’ sensitive medical and financial data

hxxps://www[.]cyberscoop[.]com/electionguard-microsoft-hart-intercivic/ hxxps://twitter[.]com/CyberScoopNews/status/1401303073692303363/photo/1CyberScoopNews – Twitter – Jun 05 2021 22:21A hospital in Massachusetts quietly paid off a ransomware gang after a February hack that exposed patients’ sensitive medical and financial data

hxxps://www[.]cyberscoop[.]com/electionguard-microsoft-hart-intercivic/…

Hackers Breached Colonial Pipeline Using Compromised PasswordOffice of Inadequate Security – Jun 05 2021 11:36William Turton and Kartikay Mehrotra report: The hack that took down the largest fuel pipeline in the U.S. and led to…
If anybody is pondering why it never saw mass exploitation – I never saw a public exploit that worked well. The one which did the rounds only worked on Windows 7 and was unreliable. Win7 is minority of exposed hosts online.GossiTheDog – Twitter – Jun 05 2021 20:56If anybody is pondering why it never saw mass exploitation – I never saw a public exploit that worked well. The one which did the rounds only worked on Windows 7 and was unreliable. Win7 is minority of exposed hosts online.
Hacker Groups
The Anonymous Group now has Elon Musk in their sights…Steemit – Jun 05 2021 19:32Check it out: (Source: https://youtube/UG07x3aN3b0 ) Not sure if they will do anything or not, but I for one was happy to see the video. If nothing else it provides some context to Elon's decisions surrounding his about face with bitcoin.
How DarkSide became a rasonmware powerhouseFinance & Commerce – Jun 05 2021 12:05Editor’s note: Business content from The New York Times will now be included with your subscription to Finance & Commerce. Not a subscriber? Start your subscription here . MOSCOW — Just weeks before the ransomware gang known as DarkSide attacked the…
Malware
I love malware indictments. They provide so much insight into the organisation and day to day operations of ransomware groups. Trickbot has three managers, including a PM and a VP operations. hxxps://twitter[.]com/thegrugq/status/1401083570752417798/photo/1thegrugq – Twitter – Jun 05 2021 07:48I love malware indictments. They provide so much insight into the organisation and day to day operations of ransomware groups. Trickbot has three managers, including a PM and a VP operations….
RT @thegrugq: I love malware indictments. They provide so much insight into the organisation and day to day operations of ransomware groups. Trickbot has three managers, including a PM and a VP operations. hxxps://twitter[.]com/thegrugq/status/1401083570752417798/photo/1Securityblog – Twitter – Jun 05 2021 13:49RT @thegrugq: I love malware indictments. They provide so much insight into the organisation and day to day operations of ransomware groups. Trickbot has three managers, including a PM and a VP operations….
Deep Dive Malware Analysis Series Of Hermes Ransomware Pt 3 – Crypto OperationsReverse Engineering – Jun 05 2021 11:57submitted by /u/AGDCservices [link] [comments]
BlackCocaine Ransomware, a new malware in the threat landscape hxxps://securityaffairs[.]co/wordpress/118617/malware/blackcocaine-ransomware.html?utm_source=rss&utm_medium=rss&utm_campaign=blackcocaine-ransomwareSecurityblog – Twitter – Jun 05 2021 18:35BlackCocaine Ransomware, a new malware in the threat landscape hxxps://securityaffairs[.]co/wordpress/118617/malware/blackcocaine-ransomware.html?utm_source=rss&utm_medium=rss&utm_campaign=blackcocaine-ransomware
Vulnerabilities
#TrendMicro details CVE-2021-30724 privilege escalation flaw in #macOS, #iOS
hxxps://securityaffairs[.]co/wordpress/118570/security/cve-2021-30724-privilege-escalation-macos-ios.html
#securityaffairs #hacking #Apple
securityaffairs – Twitter – Jun 05 2021 09:13#TrendMicro details CVE-2021-30724 privilege escalation flaw in #macOS, #iOS
hxxps://securityaffairs[.]co/wordpress/118570/security/cve-2021-30724-privilege-escalation-macos-ios.html
#securityaffairs #hacking #Apple
#TrendMicro details CVE-2021-30724 privilege escalation flaw in #macOS, #iOS.
hxxps://securityaffairs[.]co/wordpress/118570/security/cve-2021-30724-privilege-escalation-macos-ios.html
#securityaffairs #hacking #Apple
securityaffairs – Twitter – Jun 05 2021 12:42#TrendMicro details CVE-2021-30724 privilege escalation flaw in #macOS, #iOS.
hxxps://securityaffairs[.]co/wordpress/118570/security/cve-2021-30724-privilege-escalation-macos-ios.html
#securityaffairs #hacking #Apple
Signal Silently Patched Severe Privacy Flaw Hoping Nobody Would NoticeTechNadu – Jun 05 2021 11:18Signal wasn’t generating alerts when “safety numbers” on chat rooms are changed in the past couple of months. The IM platform rejected the report that came from researchers, saying they’re unable to reproduce the issue. Signal pushed the fixing patches…
Was doing some scans on BlueKeep just now (remember that, lol) – over a third of internet facing RDP endpoints still aren’t patched for it.

(You can also fact check me with vuln:”cve-2019-0708″ tag on Shodan)GossiTheDog – Twitter – Jun 05 2021 20:54Was doing some scans on BlueKeep just now (remember that, lol) – over a third of internet facing RDP endpoints still aren't patched for it.

(You can also fact check me with vuln:"cve-2019-0708" tag on Shodan)

Ongoing Campaigns
Cybercriminals Target Retail Chains and Food JointsCyware – Jun 05 2021 20:28Almost all retail businesses today depend on the internet for most of their operations. While they invest in state-of-the-art platforms, meeting adequate security protocols appears to be a blockage. In recent months, several cyberattacks have been…

Although Silobreaker has relied on what it regards as reliable sources while compiling the content herein, Silobreaker cannot guarantee the accuracy, completeness, integrity or quality of such content and no responsibility is accepted by Silobreaker in respect of such content. Readers must determine for themselves what reliance they should place on the compiled content herein.

Silobreaker Daily Cyber Alert

Sign up for the latest news on data breaches, hacker groups, malware and vulnerabilities.

Silobreaker
This website uses cookies.
See our privacy policy at www.silobreaker.com/legal