11 January 2021

This alert was created automatically by our award-winning intelligence product Silobreaker Online. Story selection is determined by an algorithm and based on a set of queries initially set by a Silobreaker user. Contact us here for more information.

Heat – Trending Malware and Threat Actors
Name Heat 1 Heat 7 Vol 1 Vol 7
PYSA Ransomware 2 8
Clop Ransomware 2 2
TeamTNT 2 11
APT27 2 21
SectopRAT 1 1
Anonymous Indonesia 1 1
Starslord Dowloader 1 1
TheDarkOverlord 1 1
sLoad Downloader 1 1
Netwire RAT 1 2
Data Breaches
CyberScoopNews – Grid regulator warns utilities of risk of SolarWinds backdoor, asks how exposed they are https://t.co/d7SDVOyddj by @snlyngaasCyberScoopNews – Twitter – Jan 10 2021 22:30Grid regulator warns utilities of risk of SolarWinds backdoor, asks how exposed they are https://hubs.ly/H0Dy86J0 by @snlyngaas
securityaffairs – Unsecured Git server exposed #Nissan North America
https://t.co/1jZGcVs7aS
#securityaffairs #hacking
securityaffairs – Twitter – Jan 10 2021 22:02Unsecured Git server exposed #Nissan North America

Unsecured Git server exposed Nissan North America


#securityaffairs #hacking

tqbf – @zmanian I agree, but hope people understand that the decision to evict Parler doesn’t change Signal’s predicament… https://t.co/Mt1lQBZZWutqbf – Twitter – Jan 11 2021 05:51@zmanian I agree, but hope people understand that the decision to evict Parler doesn’t change Signal’s predicament in any way; they’re exposed, for their own idiosyncratic reasons, no matter what the industry decides its Parler response is.
Hacker Groups
TeamTNT botnet now steals Docker API and AWS credentialsSecurity Affairs – Jan 10 2021 10:22Researchers from Trend Micro discovered that the TeamTNT botnet is now able to steal Docker API logins along with AWS credentials. Researchers from Trend Micro discovered that the …
Dinosn – TeamTNT botnet now steals Docker API and AWS credentials https://t.co/meTtS54hi5Dinosn – Twitter – Jan 10 2021 12:11TeamTNT botnet now steals Docker API and AWS credentials https://securityaffairs.co/wordpress/113228/malware/teamtnt-botnet-docker-aws.html?utm_source=feedly&utm_medium=rss&utm_campaign=teamtnt-botnet-docker-aws
anon_indonesia – The Anonymous Indonesia News Daily is out! https://t.co/Gi6pUZk9Ou Stories via @Cyber_War_News @AnonymousSwizz #jakpost #googleanon_indonesia – Twitter – Jan 11 2021 03:14The Anonymous Indonesia News Daily is out! https://paper.li/anon_indonesia/1435572762?edition_id=27ee71e0-53bb-11eb-a9a9-002590a5ba2d Stories via @Cyber_War_News @AnonymousSwizz #jakpost #google
CyberScoopNews – How the Russian hacking group Cozy Bear, suspected in the SolarWinds breach, plays the long game https://t.co/sbJlZj2pH0 by @shanvavCyberScoopNews – Twitter – Jan 10 2021 19:30How the Russian hacking group Cozy Bear, suspected in the SolarWinds breach, plays the long game https://hubs.ly/H0Dy4Kh0 by @shanvav
Malware
Ransomware Gang Ryuk Thought To Have Pulled In US$150 MillionSecurityPhresh – Jan 10 2021 22:57Digital wallets bursting with ransom payments.
InfoSecHotSpot – Cybersecurity: This ‘costly and destructive’ malware is the biggest threat to your network Emotet remains a major t… https://t.co/rusZACNfhTInfoSecHotSpot – Twitter – Jan 10 2021 07:28Cybersecurity: This 'costly and destructive' malware is the biggest threat to your network Emotet remains a major threat to corporate computer networks entering 2021, warn researchers – and other threats including ransomware, trojans and cryptominers…
Some ransomware gangs are going after top execs to pressure companies into payingOffice of Inadequate Security – Jan 10 2021 14:13Catalin Cimpanu reports: A new trend is emerging among ransomware groups where they prioritize stealing data from…
ZDNet – Some ransomware gangs are going after top execs to pressure companies into paying https://t.co/xF7fEWsA1sZDNet – Twitter – Jan 10 2021 07:30Some ransomware gangs are going after top execs to pressure companies into paying…
Vulnerabilities
Nvidia Patches Security Flaws Plaguing Windows and Linux UsersHITBSecNews – Jan 11 2021 00:22Nvidia Patches Security Flaws Plaguing Windows and Linux Users l33tdawg Mon, 01/11/2021 – 00:22
hackerfantastic – RT @threatpost: In all, #Nvidia patched flaws tied to 16 CVEs across its graphics drivers and vGPU software, in its first #security update…hackerfantastic – Twitter – Jan 10 2021 16:43RT @threatpost: In all, #Nvidia patched flaws tied to 16 CVEs across its graphics drivers and vGPU software, in its first #security update of 2021.
https://threatpost.com/nvidia-windows-gamers-graphics-driver-flaws/162857/
securityaffairs – #Nvidia releases security updates for #GPU display driver and #vGPU flaws
https://t.co/nbSpZWv2ic
#securityaffairs #hacking
securityaffairs – Twitter – Jan 10 2021 13:59#Nvidia releases security updates for #GPU display driver and #vGPU flaws

Nvidia releases security updates for GPU display driver and vGPU flaws


#securityaffairs #hacking

Dinosn – Chrome 1-Day Hunting – Uncovering and Exploiting CVE-2020-15999
https://t.co/bFyEEuZcRr
Dinosn – Twitter – Jan 10 2021 07:40Chrome 1-Day Hunting – Uncovering and Exploiting CVE-2020-15999
https://starlabs.sg/blog/2021/01/chrome-1-day-hunting-uncovering-and-exploiting-cve-2020-15999/
Ongoing Campaigns
Security Affairs newsletter Round 296Security Affairs – Jan 10 2021 12:49A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box….
The Ransomware-Laden First Week of 2021Cyware – Jan 10 2021 19:24The thrill of jumping into the new year seemed high for ransomware operators. When everyone is looking forward to a new lease of life after the pandemic-driven year, attackers are also making a fresh start with new ransomware threats. New year, new…
It is time to re-evaluate Cyber-defence solutionsSecurity Affairs – Jan 10 2021 21:13Security expert Stefan Umit Uygur, CEO and Co-Founder at 4Securitas Ltd, provided his vision about the Cyber-defence solutions on the market Just where is the Global Cyber-defense Market going, and why is it failing so spectacularly to protect the…
cybersecboardrm – RT @digitalcloudgal: 📌 Q: What is an SQL injection?

A: SQL injection is a code injection technique, used to attack data-driven application…cybersecboardrm – Twitter – Jan 11 2021 03:02RT @digitalcloudgal: 📌 Q: What is an SQL injection?

A: SQL injection is a code injection technique, used to attack data-driven applications, in which malicious SQL statements are inserted into an entry field for execution

v/ CCSP study guide

Cc:…

Although Silobreaker has relied on what it regards as reliable sources while compiling the content herein, Silobreaker cannot guarantee the accuracy, completeness, integrity or quality of such content and no responsibility is accepted by Silobreaker in respect of such content. Readers must determine for themselves what reliance they should place on the compiled content herein.

Silobreaker
This website uses cookies.
See our privacy policy at www.silobreaker.com/legal