07 April 2021

This alert was created automatically by our award-winning intelligence product Silobreaker Online. Story selection is determined by an algorithm and based on a set of queries initially set by a Silobreaker user. Contact us here for more information.

Heat – Trending Malware and Threat Actors
NameHeat 1Heat 7Vol 1Vol 7
More_eggs Malware1216
Cuba Ransomware88
Conti Ransomware713
FoundCore48
Mount Locker Ransomware45
LokiBot Trojan47
Ryuk Ransomware713
Gaza Cybergang33
Astro Locker Team33
Astro Locker Ransomware33
Data Breaches
2,5M+ users can check whether their data were exposed in #Facebook data leak…
hxxps://securityaffairs[.]co/wordpress/116371/data-breach/facebook-leak-check.html
#securityaffairs #hacking
securityaffairs – Twitter – Apr 06 2021 17:352,5M+ users can check whether their data were exposed in #Facebook data leak…
hxxps://securityaffairs[.]co/wordpress/116371/data-breach/facebook-leak-check.html
#securityaffairs #hacking
2,5M+ users can check whether their data were exposed in #Facebook data leak
hxxps://securityaffairs[.]co/wordpress/116371/data-breach/facebook-leak-check.html
#securityaffairs #hacking
securityaffairs – Twitter – Apr 06 2021 07:302,5M+ users can check whether their data were exposed in #Facebook data leak
hxxps://securityaffairs[.]co/wordpress/116371/data-breach/facebook-leak-check.html
#securityaffairs #hacking
Capital One’s 2019 breach: Wait wait, there’s likely more exposed data, financial giant warns
hxxps://bit[.]ly/3wpRC1j by @prajeetspeaks
DataBreachToday – Twitter – Apr 06 2021 12:21Capital One’s 2019 breach: Wait wait, there’s likely more exposed data, financial giant warns
hxxps://bit[.]ly/3wpRC1j by @prajeetspeaks
Too slow! hxxps://bit[.]ly/31LhZ3r fined for not reporting data breach fast enough It’s not just the breach, it’s the speed of the breach response… hxxps://bit[.]ly/2PZlhgYInfoSecHotSpot – Twitter – Apr 06 2021 23:41Too slow! hxxps://bit[.]ly/31LhZ3r fined for not reporting data breach fast enough It’s not just the breach, it’s the speed of the breach response… hxxps://bit[.]ly/2PZlhgY
Hacker Groups
Mimecast : All About Advanced Persistent Threats and ProtectionMarketScreener.com – Apr 06 2021 17:50Advanced persistent threats (APTs) are costly and attention-grabbing exploits, but increased awareness and multiple layers of security can help prevent or limit their impact. Key Points: Recent mega-breaches have highlighted the magnitude and impact of…
MTR in Realtime: What is Astro Locker Team RansomwareMENAFN.com – Local – RSS – Apr 06 2021 09:00(MENAFN – Mid-East[.]Info) Sophos has published an�MTR in Real Time�alert on Sophos News about ‘Astro Locker Team’ ransomware�and its connections to ‘Mount Locker ransomware.’ The story in a …
Malware droppers posing as video game cheats. Bahamut may be behind new cyberespionage campaign. North Korea continues targeting security researchers.The CyberWire – Apr 06 2021 20:06At a glance. Charming Kitten is phishing for medical professionals. Malicious PDFs on the rise. Malware droppers posing as video game cheats. Video game company Activision has published research describing a malware dropper that poses as a cheat tool…
Malware
Sophos Links Mount Locker to Astro Locker Ransomware hxxp://dlvr[.]it/Rx66vMInfosecurityMag – Twitter – Apr 06 2021 13:53Sophos Links Mount Locker to Astro Locker Ransomware hxxp://dlvr[.]it/Rx66vM
Sophos Links Mount Locker to Astro Locker Ransomware hxxps://www[.]infosecurity-magazine[.]com/news/sophos-mount-locker-astro-locker?utm_source=twitterfeed&utm_medium=twitterInfosecurityMag – Twitter – Apr 06 2021 11:00Sophos Links Mount Locker to Astro Locker Ransomware hxxps://www[.]infosecurity-magazine[.]com/news/sophos-mount-locker-astro-locker?utm_source=twitterfeed&utm_medium=twitter
Sophos Links Mount Locker to Astro Locker RansomwareInfosecurity – Latest News – Apr 06 2021 11:00Sophos Links Mount Locker to Astro Locker Ransomware Security experts have uncovered a series of close links between ransomware groups Mount Locker and Astro Locker Team, in a new report that will be of interest to incident responders. So…
Hackers Targeting professionals With ‘more_eggs’ Malware via LinkedIn Job OffersTHN : The Hacker News – Apr 06 2021 07:04A new spear-phishing campaign is targeting professionals on LinkedIn with weaponized job offers in an attempt to infect targets with a sophisticated backdoor trojan called “more_eggs.” To increase the odds of success, the phishing lures take advantage…
Vulnerabilities
Experts found critical flaws in Rockwell FactoryTalk AssetCentreSecurity Affairs – Apr 06 2021 07:20Rockwell Automation has recently addressed nine critical vulnerabilities in its FactoryTalk AssetCentre product with the release of version v11. The American provider of industrial automation Rockwell Automation on Thursday informed customers that…
RT @SecurityWeek: VMware Patches Critical Flaw in Carbon Black Cloud Workload – hxxps://www[.]securityweek[.]com/vmware-patches-critical-flaw-carbon-black-cloud-workloadSecurityWeek – Twitter – Apr 07 2021 03:42RT @SecurityWeek: VMware Patches Critical Flaw in Carbon Black Cloud Workload – hxxps://www[.]securityweek[.]com/vmware-patches-critical-flaw-carbon-black-cloud-workload
CVE-2021-28658 In Django 2.2 before 2.2.20, 3.0 before 3.0.14, and 3.1 before 3.1.8, MultiPartParser allowed directory traversal via uploaded files with suitably crafted file names. Built-in upload handlers were not affected by this vulnerability. hxxps://cve[.]mitre[.]org/cgi-bin/cvename.cgi?name=CVE-2021-28658CVEnew – Twitter – Apr 06 2021 15:45CVE-2021-28658 In Django 2.2 before 2.2.20, 3.0 before 3.0.14, and 3.1 before 3.1.8, MultiPartParser allowed directory traversal via uploaded files with suitably crafted file names. Built-in upload handlers were not affected by this vulnerability….
CVE-2021-30146 Seafile 7.0.5 (2019) allows Persistent XSS via the “share of library functionality.” hxxps://cve[.]mitre[.]org/cgi-bin/cvename.cgi?name=CVE-2021-30146CVEnew – Twitter – Apr 06 2021 16:45CVE-2021-30146 Seafile 7.0.5 (2019) allows Persistent XSS via the “share of library functionality.” hxxps://cve[.]mitre[.]org/cgi-bin/cvename.cgi?name=CVE-2021-30146
Ongoing Campaigns
APT Group Using Voice Changing Software in Spear-Phishing CampaignSecurity Week – Apr 06 2021 15:06A sub-group of the ‘Molerats’ threat-actor has been using voice-changing software to successfully trick targets into installing malware, according to a warning from Cado Security. The Molerats hacking group , also tagged as Gaza Hackers Team, Gaza…
Hackers From China Target Vietnamese Military and GovernmentTHN : The Hacker News – Apr 06 2021 07:47A hacking group related to a Chinese-speaking threat actor has been linked to an advanced cyberespionage campaign targeting government and military organizations in Vietnam. The attacks have been attributed with low confidence to the advanced…
Preventing Dependency Confusion Attacks in PythonMedium Cybersecurity – RSS – Apr 06 2021 22:35
Chinese Cycldek APT targets Vietnamese Military and Government in sophisticated attacksSecurity Affairs – Apr 06 2021 13:15China-linked APT group Cycldek is behind an…

Although Silobreaker has relied on what it regards as reliable sources while compiling the content herein, Silobreaker cannot guarantee the accuracy, completeness, integrity or quality of such content and no responsibility is accepted by Silobreaker in respect of such content. Readers must determine for themselves what reliance they should place on the compiled content herein.

 

Silobreaker
This website uses cookies.
See our privacy policy at www.silobreaker.com/legal