08 January 2021

This alert was created automatically by our award-winning intelligence product Silobreaker Online. Story selection is determined by an algorithm and based on a set of queries initially set by a Silobreaker user. Contact us here for more information.

Heat – Trending Malware and Threat Actors
Name Heat 1 Heat 7 Vol 1 Vol 7
TA551 6 6
Egregor Ransomware 9 23
ROKRAT Trojan 5 5
QNode RAT 4 9
JSSLoader RAT 4 13
Ryuk Ransomware 7 23
ElectroRAT 6 57
IcedID Trojan 3 4
RansomExx Ransomware 2 2
ALTDOS 2 3
Data Breaches
Sealed U.S. Court Records Exposed in SolarWinds BreachSecurity Bloggers Network – Jan 07 2021 23:48The ongoing breach affecting thousands of organizations that relied on backdoored products by network software firm SolarWinds may have jeopardized the privacy of countless sealed court documents on file with the U.S. federal court system,…
thinksnews – Sealed U.S. Court Records Exposed in SolarWinds Breach https://t.co/uTCqzEroU3 https://t.co/obcZQt1Lfethinksnews – Twitter – Jan 08 2021 00:21Sealed U.S. Court Records Exposed in SolarWinds Breach https://krebsonsecurity.com/2021/01/sealed-u-s-court-records-exposed-in-solarwinds-breach/ https://twitter.com/thinksnews/status/1347337553763053571/photo/1
timyardley – Sealed U.S. Court Records Exposed in SolarWinds Breach — Krebs on Security — https://t.co/2l1hTb7Wodtimyardley – Twitter – Jan 08 2021 03:26Sealed U.S. Court Records Exposed in SolarWinds Breach — Krebs on Security — https://krebsonsecurity.com/2021/01/sealed-u-s-court-records-exposed-in-solarwinds-breach/
briankrebs – The SolarWinds hack may have exposed countless sealed documents stored with U.S. Courts system. The Administrative… https://t.co/GpjFRLIlx4briankrebs – Twitter – Jan 07 2021 23:53The SolarWinds hack may have exposed countless sealed documents stored with U.S. Courts system. The Administrative Office of the U.S. Courts won't comment on the extent of the breach, but sources say the agency was targeted w/ second-stage malware…
Hacker Groups
Thai media and content conglomerate Mono Next Public Company hit by ALTDOS hackersOffice of Inadequate Security – Jan 07 2021 22:21The same hacking group that hit Country Group Securities (CGSEC) in Thailand has revealed a recent attack on Mono Next…
War on All Fronts: Rampant KittenCheck Point Research – RSS – Jan 07 2021 16:38A man goes on Dubai T.V to discuss national security in the Middle East. 1,000 miles north, a social activist uses Telegram to organize anti-government activity. 5,000 miles north, an immigrant applies for a driver’s license in Sweden. None…
TA551: Email Attack Campaign Switches from Valak to IcedIDUnit 42 – Palo Alto Networks Blog – Jan 07 2021 08:00We continue to monitor the email attack campaign TA551, AKA Shathak, which has recently pushed IcedID, a family of information-stealing malware. The post …
Over a Third of TMT Firms Hit by Security Breach in 2020Infosecurity – Latest – Jan 07 2021 10:15Over a Third of TMT Firms Hit by Security Breach in 2020 Over a third of technology and media companies in the UK suffered a serious cyber-incident last year, according to new data from insurer Hiscox. The firm claimed that 34% of firms in…
Malware
New Year, New Ransomware: Babuk Locker Targets Large CorporationsThreatpost.com – Jan 07 2021 18:08Despite being a mostly run-of-the-mill ransomware strain, Babuk Locker's encryption mechanisms and abuse of Windows Restart Manager sets it apart.
Ryuk Gang Estimated To Have Made More Than $150 Million From Ransomware AttacksSecurityPhresh – Jan 07 2021 20:01Most of the Ryuk gangs earnings are being cashed out through accounts at crypto-exchanges Binance and Huobi.
ElectroRAT malware targets Crypto users via fake AppsMedium Cybersecurity – RSS – Jan 07 2021 20:09
December 2020’s Most Wanted Malware: Emotet Returns as Top Malware ThreatCheck Point Blog – Jan 07 2021 11:00Our latest Global Threat Index for December 2020 has revealed that the Emotet trojan has returned to first place in the top malware list, impacting 7% of organizations globally, following a spam campaign which targeted over 100,000 users per day…
Vulnerabilities
securityaffairs – Recently disclosed CVE-2020-29583 #Zyxel flaw already under opportunistic attack
https://t.co/bjd3M5mSYk
#securityaffairs #hacking
securityaffairs – Twitter – Jan 07 2021 08:34Recently disclosed CVE-2020-29583 #Zyxel flaw already under opportunistic attack

Recently disclosed CVE-2020-29583 Zyxel flaw already under opportunistic attack


#securityaffairs #hacking

Data exposure flaw on Walmart.ca revealed personal customer informationSeclists.org – Data Loss – Jan 07 2021 15:56Posted by Destry Winant on Jan 07…
Nvidia Warns Windows Gamers of High-Severity Graphics Driver FlawsThreatpost.com – Jan 07 2021 21:14In all, Nvidia patched flaws tied to 16 CVEs across its graphics drivers and vGPU software, in its first security update of 2021.
CVEnew – CVE-2020-25680 A flaw was found in JBCS httpd in version 2.4.37 SP3, where it uses a back-end worker SSL certificat… https://t.co/KKBdex3sTsCVEnew – Twitter – Jan 07 2021 18:45CVE-2020-25680 A flaw was found in JBCS httpd in version 2.4.37 SP3, where it uses a back-end worker SSL certificate with the keystore file's ID is 'unknown'. The validation of the certificate whether CN and hostname are matching stopped working and…
Ongoing Campaigns
North Korea-linked APT37 targets South with RokRat TrojanSecurity Affairs – Jan 07 2021 18:24Experts spotted the RokRat Trojan being used by North Korea-linked threat actors in attacks aimed at the South Korean government. On December 7 2020 researchers from Malwarebytes uncovered a campaign targeting the South Korean government with a…
FBI alert warns private organizations of Egregor ransomware attacksSecurity Affairs – Jan 07 2021 23:30The US Federal Bureau of Investigation (FBI) issued a security alert warning private sector companies of Egregor ransomware attacks. The US FBI has issued a Private Industry Notification (PIN) to warn private organizations of …
How surveillance companies track you using mobile networksAdaptivemobile – Jan 07 2021 14:27Surveillance companies are often in the news, but the month of December, especially, brought three impactful headlines, which all related to how surveillance companies are using mobile networks to track you. So, the talk that Cathal Mc Daid, CTO…
The 3 Most Common Types of BEC Attacks (And What You Can Do About Them)Dark Reading: – Jan 07 2021 15:00Always be skeptical and double check credentials.

Although Silobreaker has relied on what it regards as reliable sources while compiling the content herein, Silobreaker cannot guarantee the accuracy, completeness, integrity or quality of such content and no responsibility is accepted by Silobreaker in respect of such content. Readers must determine for themselves what reliance they should place on the compiled content herein.

Silobreaker
This website uses cookies.
See our privacy policy at www.silobreaker.com/legal