14 June 2021

This alert was created automatically by our award-winning intelligence product Silobreaker Online. Story selection is determined by an algorithm and based on a set of queries initially set by a Silobreaker user. Contact us here for more information.

Heat – Trending Malware and Threat Actors
Name Heat 1 Heat 7 Vol 1 Vol 7
InvisiMole 4 4
BackdoorDiplomacy 3 16
Turian Backdoor 2 19
Surprise Ransomware 1 1
Rehashed RAT 1 1
Gelsenicine Malware 1 2
Gelsevirine Malware 1 2
Gelsemine Malware 1 2
CloudComputating 1 2
EternalRocks Worm 1 2
Data Breaches
Volkswagen says a vendor’s security lapse exposed 3.3 million drivers’ details | TechCrunch hxxps://techcrunch[.]com/2021/06/11/volkswagen-says-a-vendors-security-lapse-exposed-3-3-million-drivers-details/Secnewsbytes – Twitter – Jun 13 2021 15:10Volkswagen says a vendor’s security lapse exposed 3.3 million drivers’ details | TechCrunch hxxps://techcrunch[.]com/2021/06/11/volkswagen-says-a-vendors-security-lapse-exposed-3-3-million-drivers-details/
@Carters inadvertently exposed the personal data of hundreds of thousands of customers, dating back years. Waaahhhhhhhhh #cybersecurity via @vpnMentor
hxxps://threatpost[.]com/baby-clothes-carters-leaks-customer-records/166866/
threatpost – Twitter – Jun 13 2021 18:18@Carters inadvertently exposed the personal data of hundreds of thousands of customers, dating back years. Waaahhhhhhhhh #cybersecurity via @vpnMentor
hxxps://threatpost[.]com/baby-clothes-carters-leaks-customer-records/166866/
Working Facebook data leak link?blackhat library – Jun 13 2021 14:15div class="md"> None of the links are working anymore. Does anyone have a FREE (no paywall of any kind) working link for the 533 mil leak? submitted by…
Hacker Groups
BackdoorDiplomacy APT targets diplomats from Africa and the Middle EastSecurity Affairs – Jun 13 2021 20:27ESET researchers discovered an advanced persistent threat (APT) group, tracked as BackdoorDiplomacy, that is targeting diplomats across Africa and the Middle East.  ESET researchers spotted a new state-sponsored group, dubbed…
BackdoorDiplomacy APT targets diplomats from Africa and the Middle East hxxp://dlvr[.]it/S1fYqpAliensonDaniel – Twitter – Jun 13 2021 20:35BackdoorDiplomacy APT targets diplomats from Africa and the Middle East hxxp://dlvr[.]it/S1fYqp
New DDoS extortion attacks detected as Fancy Lazarus group returns #Cybersecurity #security hxxps://www[.]csoonline[.]com/article/3621669/new-ddos-extortion-attacks-detected-as-fancy-lazarus-group-returns.htmlcybersecboardrm – Twitter – Jun 13 2021 06:06New DDoS extortion attacks detected as Fancy Lazarus group returns #Cybersecurity #security hxxps://www[.]csoonline[.]com/article/3621669/new-ddos-extortion-attacks-detected-as-fancy-lazarus-group-returns.html
Nigeria: Anonymous Group Threatens to Attack Delta Over Open Grazing BanAll Africa – RSS – Jun 14 2021 05:48[This Day] A group of unidentified persons yesterday threatened to attack Asaba and Agbor in Delta State should Governor Ifeanyi Okowa fail to withdraw his support for the ban on open grazing within 72 hours.
Malware
The Allegedly Ryuk Ransomware builder: #RyukJokeMarco Ramilli Blog – RSS – Jun 14 2021 06:05Reverse Engineering is one of the most clear path to study Malware and Threat Attribution, by RE you are intimately observe in the developer mind figuring out techniques and, from time to time, even intents. My current role as a CEO of a mid-sized…
RT @Arkbird_SOLG: I share the Gelsemine (dropper), Gelsenicine (loader), Gelsevirine (main plug-in) yara rules and the samples of the #Gelsemium group.
Samples :
hxxps://bazaar[.]abuse[.]ch/browse/tag/Gelsemium/
Yara rules :
hxxps://github[.]com/StrangerealIntel/DailyIOC/tree/master/2021-06-13/Gelsemium
Article :
hxxps://www[.]welivesecurity[.]com/wp-content/uploads/2021/06/eset_gelsemium.pdf
DrunkBinary – Twitter – Jun 14 2021 00:28RT @Arkbird_SOLG: I share the Gelsemine (dropper), Gelsenicine (loader), Gelsevirine (main plug-in) yara rules and the samples of the #Gelsemium group.
Samples :
hxxps://bazaar[.]abuse[.]ch/browse/tag/Gelsemium/
Yara rules…
Ransomware Attacks Don’t Only Happen To Other Organizations…Forbes – Cybersecurity RSS – Jun 13 2021 10:44The growing number of ransomware cases in recent years highlights the importance of implementing a security culture in organizations, even more so when, due to the pandemic, many people have switched to working from home.
RT @blueteamsec1: Get an overview of the WastedLocker ransomware family and learn its indicators of compromise. hxxps://bit[.]ly/39OwOpk hxxp://dlvr[.]it/S1fJHX #security #threathunting #infosec hxxps://twitter[.]com/blueteamsec1/status/1404150086330818560/photo/1Securityblog – Twitter – Jun 13 2021 19:23RT @blueteamsec1: Get an overview of the WastedLocker ransomware family and learn its indicators of compromise. hxxps://bit[.]ly/39OwOpk hxxp://dlvr[.]it/S1fJHX #security #threathunting #infosec…
Vulnerabilities
CVE-2021-3560 flaw in #polkit auth system service affects most of #Linux distros
hxxps://securityaffairs[.]co/wordpress/118877/security/polkit-auth-linux-distros.html
#securityaffairs #malware #hacking
securityaffairs – Twitter – Jun 13 2021 08:20CVE-2021-3560 flaw in #polkit auth system service affects most of #Linux distros
hxxps://securityaffairs[.]co/wordpress/118877/security/polkit-auth-linux-distros.html
#securityaffairs #malware #hacking
RT @CyberSecDN: Critical Microsoft Exchange flaw: What is CVE-2021-26855? – hxxps://cybersecdn[.]com/?p=4811 #cybersecurity #infosec hxxps://twitter[.]com/CyberSecDN/status/1403794245362851841/photo/1Gasgas4Ggyy – Twitter – Jun 13 2021 17:32RT @CyberSecDN: Critical Microsoft Exchange flaw: What is CVE-2021-26855? – hxxps://cybersecdn[.]com/?p=4811 #cybersecurity #infosec hxxps://twitter[.]com/CyberSecDN/status/1403794245362851841/photo/1
GitHub Releases Key Findings of an Easy-to-Exploit Linux flawE Hacking News – Jun 13 2021 15:28Kevin Backhouse, a researcher at GitHub Security Lab revealed the details of an easy-to-exploit Linux flaw that can be exploited to escalate privileges to root on the targeted system. The vulnerability, classified as highly critical and termed as…
@thespybrief And, the vulnerabilities of concern are not only in the organisations but, for ones dependent upon public support/tolerance, the society’s vulnerabilities are crucial. Some countries mil can simply ignore the public, even clamp down on it. Not so US mil or government.jabolins – Twitter – Jun 13 2021 16:16@thespybrief And, the vulnerabilities of concern are not only in the organisations but, for ones dependent upon public support/tolerance, the society’s vulnerabilities are crucial. Some countries mil can simply ignore the public, even clamp down on…
Ongoing Campaigns
APWG: Phishing maintained near-record levels in the first quarter of 2021Security Affairs – Jun 13 2021 14:05The Anti-Phishing Working Group (APWG) revealed that the number of phishing websites peaked at record levels in the first quarter of 2021. The Anti-Phishing Working Group (APWG) has published its new Phishing Activity Trends Report related to the…
TChopper: conduct lateral movement attack hxxps://securityonline[.]info/tchopper-conduct-lateral-movement-attack/Dinosn – Twitter – Jun 13 2021 11:51TChopper: conduct lateral movement attack hxxps://securityonline[.]info/tchopper-conduct-lateral-movement-attack/
RT @paulsparrows: Exploitation of RDP is involved in 90% of attacks, and in 69% of cases abused for lateral movement. Not only RDP plays a role for initial access, but it also contributes to the 11 days dwell time, enough for a #ransomware attack or to exfiltrate data. hxxps://www[.]netskope[.]com/blog/cloud-threats-memo-rdp-misconfigurations-and-initial-access-brokersSecurityblog – Twitter – Jun 13 2021 16:52RT @paulsparrows: Exploitation of RDP is involved in 90% of attacks, and in 69% of cases abused for lateral movement. Not only RDP plays a role for initial access, but it also contributes to the 11 days dwell time, enough for a #ransomware attack or…
Behind the Scene: XSS?InfoSec Bug Bounty Write-ups – RSS – Jun 13 2021 12:57Behind the Scene: XSS Hey Cyberpunks , I hope you all are doing great in your life and if not, then you are at the right place to at least remove the queries of XSS from your life. This article is going to make you somewhere close to perfection (as…

Although Silobreaker has relied on what it regards as reliable sources while compiling the content herein, Silobreaker cannot guarantee the accuracy, completeness, integrity or quality of such content and no responsibility is accepted by Silobreaker in respect of such content. Readers must determine for themselves what reliance they should place on the compiled content herein.

Silobreaker Daily Cyber Alert

Sign up for the latest news on data breaches, hacker groups, malware and vulnerabilities.

Silobreaker
This website uses cookies.
See our privacy policy at www.silobreaker.com/legal