15 December 2020

This alert was created automatically by our award-winning intelligence product Silobreaker Online. Story selection is determined by an algorithm and based on a set of queries initially set by a Silobreaker user. Contact us here for more information.

Heat – Trending Malware and Threat Actors
Name Heat 1 Heat 7 Vol 1 Vol 7
Sunburst Backdoor 50 75
UNC2452 13 22
APT29 14 39
Pay2Key Ransomware 8 14
NotPetya Ransomware 6 8
PGMiner 6 29
Nefilim Ransomware 2 4
Adrozek 4 50
Gaza Cybergang 3 28
Stuxnet 2 2
Data Breaches
Secnewsbytes – Tax Relief Biz Exposed Personal Info on 100,000 Clients – Infosecurity Magazine https://t.co/V5XkZoCcApSecnewsbytes – Twitter – Dec 14 2020 07:44Tax Relief Biz Exposed Personal Info on 100,000 Clients – Infosecurity Magazine https://www.infosecurity-magazine.com/news/tax-biz-exposed-personal-info/
hackerfantastic – @publidave @cyb3rops SolarWinds had publicly exposed FTP credentials via GitHub leak until November 2019 🤫hackerfantastic – Twitter – Dec 14 2020 16:29@publidave @cyb3rops SolarWinds had publicly exposed FTP credentials via GitHub leak until November 2019 🤫
andrewsmhay – When they reboot the movie Falling Down, it’ll be about an incident responder that fought a breach all weekend, onl… https://t.co/hUOuYF8AMcandrewsmhay – Twitter – Dec 14 2020 19:46When they reboot the movie Falling Down, it'll be about an incident responder that fought a breach all weekend, only to receive a FUD sales email on his way to work that describes how a particular vendor would have prevented the breach in the first…
Secnewsbytes – Photo Editing Tool Fotor Leaked 13 Million Private User Records https://t.co/aZatTzWo26Secnewsbytes – Twitter – Dec 14 2020 07:45Photo Editing Tool Fotor Leaked 13 Million Private User Records https://securethoughts.com/photo-editing-app-fotor-exposed-13-million-users-data/
Hacker Groups
Chat Digest – Ghost Squad Hackers 2020/12/14 23:51 – 23:51 UTC“Ghost Squad Hackers” – Telegram – Dec 14 2020 23:51[23:51] : Ohio method $200 bitcoin
Chat Digest – Ghost Squad Hackers 2020/12/14 23:51 – 23:54 UTC“Ghost Squad Hackers” – Telegram – Dec 14 2020 23:51[23:51] : Ohio method $200 bitcoin [23:54] : [23:54] : Sauce ain’t free or “ for the low “ 💯 unless you plugged in. just putting ya on game 9 times outta 10 you gonna get ripped… Listen to me now or…
Dixie D’Amelio’s TikTok account is suspended after being ‘hacked by cyber group The Chuckling Squad’Big World Tale – Dec 14 2020 13:30DIXIE D’Amelio’s TikTok account has been deleted to her 46 million followers amid a hacking mystery, it's been revealed. The move follows a series of strange posts on the internet superstar’s social media profile which suggest her page has been…
Facebook Shutters Accounts Used in APT32 CyberattacksOODA Loop – Dec 14 2020 14:17Facebook has now shut down accounts and pages operated by two threat actor groups utilizing the platform to spread malware and carry out phishing attacks. The two groups are known to be APT32 in Vietnam, and an unidentified malicious group based in…
Malware
Live Fresh Malware-MalwareTips.com – Dec 14 2020 20:57Hello everyone! I want to create a data set for machine learning, i have been looking for some malware samples, becouse i want more samples, and whenever i find anything they are either dead……
virusbtn – BlackBerry researchers performed a thorough analysis of the recently updated MountLocker ransomware… https://t.co/Goqa6U3YKtvirusbtn – Twitter – Dec 14 2020 17:20BlackBerry researchers performed a thorough analysis of the recently updated MountLocker ransomware https://blogs.blackberry.com/en/2020/12/mountlocker-ransomware-as-a-service-offers-double-extortion-capabilities-to-affiliates…
CyberScoopNews – MountLocker ransomware hackers upgrade covert approach https://t.co/35xeXfjAwf by @shanvavCyberScoopNews – Twitter – Dec 14 2020 23:54MountLocker ransomware hackers upgrade covert approach https://hubs.ly/H0CB6-X0 by @shanvav
Ransomware Group “Pay2Key” Hit Intel-Owned Habana LabsTechNadu – Dec 14 2020 09:02Iranian hackers “Pay2Key” have hit Israeli AI chip developer ‘Habana Labs.’ The actors have stolen precious stuff such as the domain controller, source code, and internal process info. Habana Labs is a promising start-up bought by Intel last year, so…
Vulnerabilities
Cisco re-patches wormable Jabber RCE flawHelp Net Security – News – Dec 14 2020 11:39In September 2020, Cisco patched four Jabber vulnerabilities (including one wormable RCE flaw), but as it turns out, three of four have not been sufficiently mitigated. The incompleteness of the patches was discovered by Watchcom researchers…
Apple Patches Code Execution Flaws iOS and iPadOSSecurityWeek RSS Feed – Dec 14 2020 19:23Apple on Monday released a major point-upgrade to its flagship iOS and iPadOS mobile operating systems to patch a handful of serious security vulnerabilities. …
CVEnew – CVE-2020-25228 A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3). A s… https://t.co/OfKA7rl2odCVEnew – Twitter – Dec 14 2020 21:45CVE-2020-25228 A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3). A service available on port 10005/tcp of the affected devices could allow complete access to all services without authorization. An…
CVEnew – CVE-2020-25233 A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3). The… https://t.co/NSjb2A5F2HCVEnew – Twitter – Dec 14 2020 21:45CVE-2020-25233 A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3). The firmware update of affected devices contains the private RSA key that is used as a basis for encryption of communication with the…
Ongoing Campaigns
Cyber Threats Crawling Across Manufacturing OrganizationsCyware – Dec 14 2020 19:24Cyber attacks on manufacturing organizations have drastically increased since the coronavirus pandemic, as the heightened automation and use of software-based technologies have been adopted globally. Since the past few weeks, the manufacturing sector…
Finding SUNBURST Backdoor with Zeek Logs & CorelightSecurity Bloggers Network – Dec 15 2020 00:16John Gamble, Director of Product Marketing, Corelight FireEye’s threat research team has discovered a troubling new supply chain attack targeting SolarWind’s Orion IT monitoring and management platform. The attack trojanizes Orion software updates…
Solar flare: Why the SolarWinds supply chain attack mattersSecurity Bloggers Network – Dec 15 2020 00:18
14th December – Threat Intelligence BulletinCheck Point Research – RSS – Dec 14 2020 16:56For the latest discoveries in cyber research for the week of 14th December, please download our Threat Intelligence Bulletin. Top Attacks and Breaches The US Treasury Department and US Department of Commerce were…

Although Silobreaker has relied on what it regards as reliable sources while compiling the content herein, Silobreaker cannot guarantee the accuracy, completeness, integrity or quality of such content and no responsibility is accepted by Silobreaker in respect of such content. Readers must determine for themselves what reliance they should place on the compiled content herein.

Silobreaker Daily Cyber Alert

Sign up for the latest news on data breaches, hacker groups, malware and vulnerabilities.

Silobreaker
This website uses cookies.
See our privacy policy at www.silobreaker.com/legal