14 February 2021

This alert was created automatically by our award-winning intelligence product Silobreaker Online. Story selection is determined by an algorithm and based on a set of queries initially set by a Silobreaker user. Contact us here for more information.

Heat – Trending Malware and Threat Actors
Name Heat 1 Heat 7 Vol 1 Vol 7
DarkSide Ransomware 7 8
Maoloa Ransomware 2 2
Blind Eagle APT 2 2
CobraLocker 2 2
Seth Locker Ransomware 2 2
DarkHydrus 2 2
TeslaCrypt 2 2
Avaddon Ransomware 3 29
Loda RAT 2 20
PowGoop 1 1
Data Breaches
Brazilian authorities start probe as 102 million consumers are exposed in new leak | ZDNet hxxps://www[.]zdnet[.]com/article/brazilian-authorities-start-probe-as-102-million-consumers-are-exposed-in-new-leak/Securityblog – Twitter – Feb 13 2021 22:04Brazilian authorities start probe as 102 million consumers are exposed in new leak | ZDNet hxxps://www[.]zdnet[.]com/article/brazilian-authorities-start-probe-as-102-million-consumers-are-exposed-in-new-leak/
Yandex Insider Causes Breach Involving 4,887 CustomersBankInfoSecurity – Feb 13 2021 14:11Breach Occurred After System Admin Granted…
Risk & Repeat: Oldsmar water plant breach raises concerns hxxps://bit[.]ly/2LLoZsLInfoSecHotSpot – Twitter – Feb 13 2021 09:11Risk & Repeat: Oldsmar water plant breach raises concerns hxxps://bit[.]ly/2LLoZsL
Florida Water Plant Hack: Leaked Credentials Found in Breach Database | Threatpost hxxps://threatpost[.]com/florida-water-plant-hack-credentials-breach/163919/Securityblog – Twitter – Feb 13 2021 22:04Florida Water Plant Hack: Leaked Credentials Found in Breach Database | Threatpost hxxps://threatpost[.]com/florida-water-plant-hack-credentials-breach/163919/
Hacker Groups
Iranian MuddyWater Hacker Group Utilizing ScreenConnect for Nefarious PurposesCyware – Feb 13 2021 19:24Anomali Threat Research has identified a campaign, probably by the Iran-based cyberespionage group Static Kitten (aka MuddyWater), targeting government agencies in the Middle East. Key findings The Static Kitten group has been steadily using Israeli…
SMITH: Commodore cards—one of the pillars of Vanderbilt culture. Don’t lose it now.Vanderbilt Hustler – Feb 13 2021 22:05Don’t phase out physical Commodore cards just because digital ones are available. Why can’t we use both? The other day my friend, exhausted from a long day and a freezing-cold walk home, stood shivering in a dining tent charging his dead phone just so…
The Anonymous Indonesia News Daily is out! hxxps://paper[.]li/anon_indonesia/1435572762?edition_id=ca0822b0-6e72-11eb-9959-002590a5ba2d Stories via @LatestAnonNews #security #darkwebanon_indonesia – Twitter – Feb 14 2021 03:14The Anonymous Indonesia News Daily is out! hxxps://paper[.]li/anon_indonesia/1435572762?edition_id=ca0822b0-6e72-11eb-9959-002590a5ba2d Stories via @LatestAnonNews #security #darkweb
Hildegard: New TeamTNT Cryptojacking Malware Targeting Kubernetes hxxps://unit42[.]paloaltonetworks[.]com/hildegard-malware-teamtnt/Securityblog – Twitter – Feb 13 2021 22:10Hildegard: New TeamTNT Cryptojacking Malware Targeting Kubernetes hxxps://unit42[.]paloaltonetworks[.]com/hildegard-malware-teamtnt/
Malware
New in Ransomware: Seth-Locker, Babuk Locker, Maoloa, TeslaCrypt, and CobraLocker hxxps://www[.]trendmicro[.]com/en_us/research/21/b/new-in-ransomware.htmlSecurityblog – Twitter – Feb 13 2021 22:13New in Ransomware: Seth-Locker, Babuk Locker, Maoloa, TeslaCrypt, and CobraLocker hxxps://www[.]trendmicro[.]com/en_us/research/21/b/new-in-ransomware.html
RT @Securityblog: New in Ransomware: Seth-Locker, Babuk Locker, Maoloa, TeslaCrypt, and CobraLocker hxxps://www[.]trendmicro[.]com/en_us/research/21/b/new-in-ransomware.htmlCephurs – Twitter – Feb 13 2021 22:21RT @Securityblog: New in Ransomware: Seth-Locker, Babuk Locker, Maoloa, TeslaCrypt, and CobraLocker hxxps://www[.]trendmicro[.]com/en_us/research/21/b/new-in-ransomware.html
Rising Security Concerns Over the Takedown of EmotetCyware – Feb 13 2021 19:24The cybersecurity world got a great start in 2021 with the takedown of the powerful Emotet trojan. The operation that spanned two years, was successfully accomplished in a coordinated effort from law enforcement agencies and security professionals…
New Agent Tesla Variants can Bypass Security WallsCyware – Feb 13 2021 19:24Agent Tesla has been undergoing continuous improvements, and now, its operators have established a new benchmark. The newest variants of Agent Tesla are equipped with the ability to target a scan and analysis software designed to prevent malware…
Vulnerabilities
Avaddon ransomware fixes flaw allowing free decryption hxxps://www[.]bleepingcomputer[.]com/news/security/avaddon-ransomware-fixes-flaw-allowing-free-decryption/Securityblog – Twitter – Feb 13 2021 22:01Avaddon ransomware fixes flaw allowing free decryption hxxps://www[.]bleepingcomputer[.]com/news/security/avaddon-ransomware-fixes-flaw-allowing-free-decryption/
Cyber Command, NSA warn to patch decade-old vulnerability in sudo hxxps://www[.]cyberscoop[.]com/sudo-flaw-cyber-command-nsa-buffer-overflow/CyberScoopNews – Twitter – Feb 13 2021 21:43Cyber Command, NSA warn to patch decade-old vulnerability in sudo hxxps://www[.]cyberscoop[.]com/sudo-flaw-cyber-command-nsa-buffer-overflow/
Hunting for CVE 2021-3156 with AuditdReddit – Netsec – Feb 13 2021 17:39submitted by /u/DLLCoolJ [link] [comments]
12-Year-Old vulnerability in Windows Defender risked 1 billion devicesHackRead – Feb 13 2021 15:52A critical security vulnerability was identified in Windows Defender, an anti-malware component of Microsoft Windows that comes pre-installed with every copy of Windows. This number is over 1 billion devices. This vulnerability could let attackers…
Ongoing Campaigns
What is DNS Poisoning? (aka DNS Spoofing) | KeyfactorSecurity Bloggers Network – Feb 13 2021 20:03DNS poisoning, also known as DNS cache poisoning or DNS spoofing, is a highly deceptive cyber attack in which hackers redirect web traffic toward fake web servers and phishing websites. These fake sites typically look like the user’s intended…
Vast Majority of Phishing and Malware Campaigns Are Small-Scale and Short-LivedSecurity Week – Feb 13 2021 12:06Researchers from Google and Stanford University have analyzed the patterns of more than 1.2 billion email-based phishing and malware attacks targeting Gmail users, and found that most attack campaigns are short-lived and sent to fewer than 1,000…
Windows Users Face Another Wave of Cyber ThreatsCyware – Feb 13 2021 19:24Windows, one of the most popular operating systems used by more than 75% of desktop users, is one of the top products being targeted by cyberattacks. According to recently disclosed statistics , Windows has been targeted by more than 80% of malware…
Leading Canadian rental car company hit by DarkSide ransomwareBleepingComputer.com – Feb 13 2021 18:08Canadian Discount Car and Truck Rentals has been hit with a DarkSide ransomware attack where the hackers claim to have stolen 120GB of data. […]

Although Silobreaker has relied on what it regards as reliable sources while compiling the content herein, Silobreaker cannot guarantee the accuracy, completeness, integrity or quality of such content and no responsibility is accepted by Silobreaker in respect of such content. Readers must determine for themselves what reliance they should place on the compiled content herein.

Silobreaker Daily Cyber Alert

Sign up for the latest news on data breaches, hacker groups, malware and vulnerabilities.

Silobreaker
This website uses cookies.
See our privacy policy at www.silobreaker.com/legal