10 January 2021
This alert was created automatically by our award-winning intelligence product Silobreaker Online. Story selection is determined by an algorithm and based on a set of queries initially set by a Silobreaker user. Contact us here for more information.
Heat – Trending Malware and Threat Actors
| Name | Heat 1 | Heat 7 | Vol 1 | Vol 7 |
|---|---|---|---|---|
| Hidden Tear Ransomware |  |
 |
2 | 2 |
| APT37 | |
 |
2 | 11 |
| LokiBot Trojan | |
|
2 | 11 |
| Egregor Ransomware | |
|
4 | 37 |
| IcedID Trojan | |
|
2 | 7 |
| BabyShark Malware | |
|
1 | 1 |
| Pony Trojan | |
|
1 | 1 |
| ZombieBoy Worm | |
|
1 | 1 |
| Ostap Downloader | |
|
1 | 1 |
| DarkComet | |
|
1 | 1 |
Data Breaches
InfoSecHotSpot – Cybersecurity expert calls for replacement technology following Tasmanian ambulance patient data leak A cybersecuri… https://t.co/ishowxEFL6InfoSecHotSpot – Twitter – Jan 09 2021 11:58Cybersecurity expert calls for replacement technology following Tasmanian ambulance patient data leak A cybersecurity expert called on the Tasmanian Government to replace its ambulance communication technology to prevent future breaches of…
InfoSecHotSpot – Cybersecurity expert calls for replacement technology following Tasmanian ambulance patient data leak A cybersecuri… https://t.co/3JIMBmtgf3InfoSecHotSpot – Twitter – Jan 09 2021 22:28Cybersecurity expert calls for replacement technology following Tasmanian ambulance patient data leak A cybersecurity expert called on the Tasmanian Government to replace its ambulance communication technology to prevent future breaches of…
InfoSecHotSpot – Cybersecurity expert calls for replacement technology following Tasmanian ambulance patient data leak A cybersecuri… https://t.co/M5tdhTJrSLInfoSecHotSpot – Twitter – Jan 10 2021 00:28Cybersecurity expert calls for replacement technology following Tasmanian ambulance patient data leak A cybersecurity expert called on the Tasmanian Government to replace its ambulance communication technology to prevent future breaches of…
securityaffairs – Unsecured Git server exposed #Nissan North America
https://t.co/1jZGcVs7aS
#securityaffairs #hackingsecurityaffairs – Twitter – Jan 09 2021 11:09Unsecured Git server exposed #Nissan North America
https://t.co/1jZGcVs7aS
#securityaffairs #hackingsecurityaffairs – Twitter – Jan 09 2021 11:09Unsecured Git server exposed #Nissan North America
#securityaffairs #hacking
Hacker Groups
Chat Digest – Ghost Squad Hackers 2021/01/09 21:49 – 21:49 UTC“Ghost Squad Hackers” – Telegram – Jan 09 2021 21:49[21:49] : FEDERAL REFUND hitting as hell rn🔥$200 bitcoin sauce 🌊 [21:49] : [21:49] : Msg Me @MRNikulin [21:49] :
North Korean APT37 Hackers Use VBA Self Decode Technique to Inject RokRatGBHackers On Security – RSS – Jan 09 2021 07:00…
anon_indonesia – The Anonymous Indonesia News Daily is out! https://t.co/jIyr7KBTll Stories via @sureshdr #indonesia #sj182anon_indonesia – Twitter – Jan 10 2021 03:14The Anonymous Indonesia News Daily is out! https://paper.li/anon_indonesia/1435572762?edition_id=fda61c90-52f1-11eb-a9a9-002590a5ba2d Stories via @sureshdr #indonesia #sj182
Securityblog – TA551: Email Attack Campaign Switches from Valak to IcedID https://t.co/OGxEQITdMWSecurityblog – Twitter – Jan 09 2021 23:23TA551: Email Attack Campaign Switches from Valak to IcedID https://unit42.paloaltonetworks.com/ta551-shathak-icedid/
Malware
Some ransomware gangs are going after top execs to pressure companies into payingZDNet Security – Jan 09 2021 08:00Ransomware gangs are prioritizing stealing data from workstations used by executives in the hopes of finding and using valuable information to use in the extortion process.
InfoSecHotSpot – Cybersecurity: This ‘costly and destructive’ malware is the biggest threat to your network Emotet remains a major t… https://t.co/w4eNJ0lxs6InfoSecHotSpot – Twitter – Jan 10 2021 04:58Cybersecurity: This 'costly and destructive' malware is the biggest threat to your network Emotet remains a major threat to corporate computer networks entering 2021, warn researchers – and other threats including ransomware, trojans and cryptominers…
ZDNet – Some ransomware gangs are going after top execs to pressure companies into paying https://t.co/yppOSDXxYDZDNet – Twitter – Jan 09 2021 10:15Some ransomware gangs are going after top execs to pressure companies into paying…
ZDNet – Some ransomware gangs are going after top execs to pressure companies into paying https://t.co/6u4d6Fp9qCZDNet – Twitter – Jan 09 2021 14:30Some ransomware gangs are going after top execs to pressure companies into paying…
Vulnerabilities
Dinosn – Understanding and Exploiting Zerologon: A paper for beginners to understand Zerologon and how to go about exploitin… https://t.co/rv0D7qUvvtDinosn – Twitter – Jan 10 2021 05:29Understanding and Exploiting Zerologon: A paper for beginners to understand Zerologon and how to go about exploiting the vulnerability.
https://sidb.in/2021/01/06/Zerologon-Paper.html
https://sidb.in/2021/01/06/Zerologon-Paper.html
CyberScoopNews – 33 connectivity flaws render millions of IT, IoT devices vulnerable https://t.co/RmHwU8G8aICyberScoopNews – Twitter – Jan 10 2021 03:3533 connectivity flaws render millions of IT, IoT devices vulnerable https://hubs.ly/H0Dy10Y0
threatpost – In all, #Nvidia patched flaws tied to 16 CVEs across its graphics drivers and vGPU software, in its first #security… https://t.co/N6sQnqUoKJthreatpost – Twitter – Jan 09 2021 23:00In all, #Nvidia patched flaws tied to 16 CVEs across its graphics drivers and vGPU software, in its first #security update of 2021.
https://threatpost.com/nvidia-windows-gamers-graphics-driver-flaws/162857/
https://threatpost.com/nvidia-windows-gamers-graphics-driver-flaws/162857/
securityaffairs – #Nvidia releases security updates for #GPU display driver and #vGPU flaws
https://t.co/nbSpZWv2ic
#securityaffairs #hackingsecurityaffairs – Twitter – Jan 09 2021 11:08#Nvidia releases security updates for #GPU display driver and #vGPU flaws
https://t.co/nbSpZWv2ic
#securityaffairs #hackingsecurityaffairs – Twitter – Jan 09 2021 11:08#Nvidia releases security updates for #GPU display driver and #vGPU flaws
Nvidia releases security updates for GPU display driver and vGPU flaws
#securityaffairs #hacking
Ongoing Campaigns
Thallium Hacker Targeted Users of Private Stock Investment MessengerCyware – Jan 09 2021 19:24Recently, ESTsecurity Security Response Center (ESRC) reported that a North Korean hacking group dubbed Thallium (aka APT37 and Kimsuky) has started leveraging new techniques to prey on stock investors. Thallium’s supply chain attacks Thallium has…
FBI Issues Alert Over Growing Egregor Ransomware ThreatBankInfoSecurity – Jan 09 2021 16:41Bureau And Security Experts Warn About Gang's…
SolarWinds hackers also used common hacker techniques, CISA revealedSecurity Affairs – Jan 09 2021 14:09CISA revealed that threat actors behind the SolarWinds hack also used password guessing and password spraying in its attacks. Cybersecurity and Infrastructure Security Agency (CISA) revealed that threat actors behind the …
alexhutton – RT @certfalab: Our 2020 report revealed that Charming Kitten, an Iranian hacking group, used the Google site service for their phishing att…alexhutton – Twitter – Jan 09 2021 16:08RT @certfalab: Our 2020 report revealed that Charming Kitten, an Iranian hacking group, used the Google site service for their phishing attacks. This new brand report explains the new hacking method of using Google script by #APT35.
Read the full…
Read the full…
Although Silobreaker has relied on what it regards as reliable sources while compiling the content herein, Silobreaker cannot guarantee the accuracy, completeness, integrity or quality of such content and no responsibility is accepted by Silobreaker in respect of such content. Readers must determine for themselves what reliance they should place on the compiled content herein.
