08 June 2021

This alert was created automatically by our award-winning intelligence product Silobreaker Online. Story selection is determined by an algorithm and based on a set of queries initially set by a Silobreaker user. Contact us here for more information.

Heat – Trending Malware and Threat Actors
Name Heat 1 Heat 7 Vol 1 Vol 7
Trickbot Malware 35 96
PayloadBIN Ransomware 8 13
SkinnyBoy Malware 7 24
Evil Corp 5 9
Gootkit 4 4
Carbanak 7 17
Anonymous Group 4 7
APT28 4 16
Kimsuky Malware 3 12
WastedLocker 3 7
Data Breaches
Unauthorized access accounts for 43% of all breaches globallyHelp Net Security – News – Jun 08 2021 04:30There has been a 450% surge in breaches containing usernames and passwords globally, according to a ForgeRock report. Researchers also found unauthorized access was the leading cause of breaches for the third consecutive year, increasing…
Ransomware Hit Another Pipeline Firm—and 70GB of Data Leaked #CyberSecurity hxxps://www[.]wired[.]com/story/linestar-pipeline-ransomware-leakcybersecboardrm – Twitter – Jun 07 2021 21:00Ransomware Hit Another Pipeline Firm—and 70GB of Data Leaked #CyberSecurity hxxps://www[.]wired[.]com/story/linestar-pipeline-ransomware-leak
@mattifestation Does additional security spend demonstrate adequate ROI to justify the spend in the face of the probability of being hit with a destructive ransom/data leak? I haven’t looked at the numbers, maybe someone who has can jump in. Or maybe the oversimplified answer is cloud.curtw – Twitter – Jun 07 2021 17:22@mattifestation Does additional security spend demonstrate adequate ROI to justify the spend in the face of the probability of being hit with a destructive ransom/data leak? I haven’t looked at the numbers, maybe someone who has can jump in. Or maybe…
Personal Data Leak Checker: Your Email & Data – Breached? | CyberNews hxxps://cybernews[.]com/personal-data-leak-check/Secnewsbytes – Twitter – Jun 08 2021 05:26Personal Data Leak Checker: Your Email & Data – Breached? | CyberNews hxxps://cybernews[.]com/personal-data-leak-check/
Hacker Groups
Knowing Anonymous; The Renowned ‘Hacktivists’ GroupWoman’s Era – Jun 07 2021 21:18The top story of the day is obviously about a new video released by the Hacker group Anonymous threatening the Tesla CEO Elon Musk. In the video footage, the’ hacktivists ’ are seen calling out against Musk over his crypto market hold. Anonymous…
US Prosecutors Charge Latvian Woman in Trickbot Gang CaseBankInfoSecurity.com – Jun 07 2021 18:08Case Is First Test for DOJ's Ransomware…
Anonymous Takes Aim at Elon Musk After Months of Crypto Drama on TwitterIQ Stock Market – Jun 07 2021 08:07By Rachel Mc Intosh 7 minutes ago Following much criticism from analysts and enthusiasts in the crypto space, Elon Musk seems to have found another new enemy: Anonymous. In a video posted to the groups official Facebook page and Youtube channel, a Guy…
DOJ: ‘Today, we turned the tables on DarkSide’Mansfield News Journal – Jun 07 2021 21:33The Justice Department has recovered the majority of a multimillion-dollar ransom payment to hackers after a cyberattack that caused Colonial Pipeline to halt its operations last month, officials said Monday. (June 7) AP © 2021…
Malware
FreakOut malware worms its way into vulnerable VMware serversSeclists.org – Data Loss – Jun 07 2021 13:58Posted by Sophia Kingsbury on Jun 07…
Latvian Woman Charged with Developing Malware for TrickbotInfosecurity – Latest News – Jun 07 2021 10:05Latvian Woman Charged with Developing Malware for Trickbot A 55-year-old Latvian woman has been charged on multiple counts for her alleged role in developing malware for the infamous Trickbot group. On Friday, Alla Witte, aka…
Latvian Woman Charged With Writing Malware For The Trickbot GroupSecurityPhresh – Jun 07 2021 14:42Looking for contract programming work? You might be surprised at whats on offer out there.
New Evil Corp ransomware mimics PayloadBin gang to evade US sanctionsOffice of Inadequate Security – Jun 07 2021 11:23Lawrence Abrams reports: The new PayloadBIN ransomware has been attributed to the Evil Corp cybercrime gang, rebranding to…
Vulnerabilities
Attacks Exploiting VMware vSphere Vulnerability Spotted One Week After Release of Patches hxxps://www[.]securityweek[.]com/attacks-exploiting-vmware-vsphere-flaw-spotted-one-week-after-patching CVE-2021-21985SecurityWeek – Twitter – Jun 07 2021 19:23Attacks Exploiting VMware vSphere Vulnerability Spotted One Week After Release of Patches hxxps://www[.]securityweek[.]com/attacks-exploiting-vmware-vsphere-flaw-spotted-one-week-after-patching CVE-2021-21985
CVE-2020-25716 A flaw was found in Cloudforms. A role-based privileges escalation flaw where export or import of administrator files is possible. An attacker with a specific group can perform actions restricted only to system administrator. This is the … hxxps://cve[.]mitre[.]org/cgi-bin/cvename.cgi?name=CVE-2020-25716CVEnew – Twitter – Jun 07 2021 21:45CVE-2020-25716 A flaw was found in Cloudforms. A role-based privileges escalation flaw where export or import of administrator files is possible. An attacker with a specific group can perform actions restricted only to system administrator. This is…
CVE-2020-1750 A flaw was found in the machine-config-operator that causes an OpenShift node to become unresponsive when a container consumes a large amount of memory. An attacker could use this flaw to deny access to schedule new pods in the OpenShift c… hxxps://cve[.]mitre[.]org/cgi-bin/cvename.cgi?name=CVE-2020-1750CVEnew – Twitter – Jun 07 2021 21:45CVE-2020-1750 A flaw was found in the machine-config-operator that causes an OpenShift node to become unresponsive when a container consumes a large amount of memory. An attacker could use this flaw to deny access to schedule new pods in the…
CVE-2020-1719 A flaw was found in wildfly. The EJBContext principle is not popped back after invoking another EJB using a different Security Domain. The highest threat from this vulnerability is to data confidentiality and integrity. Versions… hxxps://cve[.]mitre[.]org/cgi-bin/cvename.cgi?name=CVE-2020-1719CVEnew – Twitter – Jun 07 2021 17:45CVE-2020-1719 A flaw was found in wildfly. The EJBContext principle is not popped back after invoking another EJB using a different Security Domain. The highest threat from this vulnerability is to data confidentiality and integrity. Versions……
Ongoing Campaigns
Russian Hackers Use New ‘SkinnyBoy’ Malware in Attacks on Military, Government OrgsSecurity Week – Jun 07 2021 10:52The Russia-linked threat group known as APT28 has been observed using a new backdoor in a series of attacks targeting military and government institutions, researchers with threat intelligence company Cluster25 reveal. Active since at least 2007 and…
TeamTNT attacks IAM credentials of AWS and Google CloudSC Magazine US – Jun 07 2021 21:44People walk past a Google Cloud exhibit during the press days at the 2019 IAA Frankfurt Auto Show on September 11, 2019 in Frankfurt am Main, Germany. (Photo by Sean Gallup/) Researchers reported Friday that TeamTNT is using compromised AWS…
Kimsuky APT Group is Evolving; A Matter to be Worried AboutCyware – Jun 07 2021 14:28North Korean APT group Kimsuky, also known as Thallium, Black Banshee, and Velvet Chollim, has been found adopting new Tactics, Techniques, and Procedures (TTPs) as it continues to launch espionage attacks. Researches reveal that the notorious group…
The Russia-linked threat group known as APT28 has been observed using a new backdoor in a series of attacks targeting military and government institutions hxxps://www[.]securityweek[.]com/russian-hackers-use-new-skinnyboy-malware-attacks-military-government-orgsEduardKovacs – Twitter – Jun 07 2021 10:57The Russia-linked threat group known as APT28 has been observed using a new backdoor in a series of attacks targeting military and government institutions…

Although Silobreaker has relied on what it regards as reliable sources while compiling the content herein, Silobreaker cannot guarantee the accuracy, completeness, integrity or quality of such content and no responsibility is accepted by Silobreaker in respect of such content. Readers must determine for themselves what reliance they should place on the compiled content herein.

Silobreaker Daily Cyber Alert

Sign up for the latest news on data breaches, hacker groups, malware and vulnerabilities.

Silobreaker
This website uses cookies.
See our privacy policy at www.silobreaker.com/legal