21 January 2021

This alert was created automatically by our award-winning intelligence product Silobreaker Online. Story selection is determined by an algorithm and based on a set of queries initially set by a Silobreaker user. Contact us here for more information.

Heat – Trending Malware and Threat Actors
Name Heat 1 Heat 7 Vol 1 Vol 7
Raindrop Backdoor 20 82
UNC2452 11 20
Teardrop Dropper 6 20
EMOTET Trojan 14 30
VPNFilter Malware 3 8
Sunburst Backdoor 16 46
Shiny Hunters 2 2
Ryuk Ransomware 5 13
Winnti Trojan 2 9
Lazarus Group 3 3
Data Breaches
Emails exposed to SolarWinds HackersIT Security Guru – Jan 20 2021 14:04SolarWinds attackers managed to gain access to internal emails via a different intrusion vector. This was confirmed by Malwarebytes, who stated that a second threat vector was used to infiltrate private emails with the use of password guessing or…
Now-Defunct ‘Fleek App’ Exposed Intimate User PhotosTechNadu – Jan 20 2021 12:03‘Fleek App’ shut its doors in 2009 but still kept user data on its servers and eventually leaked it online. The type of exposed data includes sexual images, drug use pictures, and sensitive chat content. Along with the real user data, Fleek’s shady…
Secnewsbytes – Flaws in dnsmasq software leave millions of Linux-based devices exposed – https://t.co/n6TJkiM1dk https://t.co/NdYFSJXV8cSecnewsbytes – Twitter – Jan 20 2021 08:25Flaws in dnsmasq software leave millions of Linux-based devices exposed – http://TechCentral.ie http://www.techcentral.ie/3ZHIZ
DarkReading – 56% of businesses cite potential leaks from remote workers as the primary reason they feel more vulnerable to breac… https://t.co/VNjy84945IDarkReading – Twitter – Jan 20 2021 19:4056% of businesses cite potential leaks from remote workers as the primary reason they feel more vulnerable to breaches; 26% predict if they suffer a big breach in the next year, it would most likely stem from remote systems & workers.
More in…
Hacker Groups
nicoleperlroth – @wildwohl As the reporter who first disclosed Unit 61398, I assure you that everything you just said is entirely false.nicoleperlroth – Twitter – Jan 21 2021 03:29@wildwohl As the reporter who first disclosed Unit 61398, I assure you that everything you just said is entirely false.
Haurus, from DGSI to defence rights (through the darkweb)Reddit – Intelligence News – RSS – Jan 20 2021 22:25submitted by /u/Cropitekus [link]…
ShinyHunters publishes 1.9M stolen user credentials from photo editing site PixlrSiliconANGLE – Jan 21 2021 02:28Infamous hacking group ShinyHunters has released 1.9 million stolen user records from free online photo editing service Pixlr as part of a release of hacked data from various sites. Links to the data stolen from Pixlr were published on a well-known…
SX Save Manager v1.2 (Not released by Team Xecuter)GBAtemp.net – The Independent Video Game Community – Jan 20 2021 22:09Was told to go ahead and post this here by a few people. Had someone tell me that SX Save Manager v1.2 was released on psxtools.de and was setup to be an exclusive there. Not sure if this was just leaked or planned by TX but nonetheless here is the…
Malware
Vendor ransomware attack by Ryuk impacted 21 healthcare entities in 2019Office of Inadequate Security – Jan 21 2021 01:57A recent report headlining that 560 healthcare facilities were impacted by ransomware attacks in 2020 may have seemed…
Hundreds of Networks Still Host Devices Infected With VPNFilter MalwareMalwareTips.com – Jan 20 2021 12:52The VPNFilter malware is still present in hundreds of networks and malicious actors could take control of the infected devices, according to researchers at cybersecurity firm Trend Micro… Click to expand……
ElectroRAT: Yet Another Golang Multi-Platform MalwareCyware – Jan 20 2021 19:24As Golang-based malware are multi-platform malware with enhanced capabilities, They are rising in popularity among malware authors. Recently, a cybercriminal has been observed targeting cryptocurrency users with a full-fledged marketing campaign,…
Ransomware provides the perfect coverHelp Net Security – News – Jan 21 2021 06:00Look at any list of security challenges that CISOs are most concerned about and you’ll consistently find ransomware on them. It’s no wonder: ransomware attacks cripple organizations due to the costs of downtime, recovery, regulatory penalties, and…
Vulnerabilities
CVEnew – CVE-2020-14360 A flaw was found in the https://t.co/NfcYnrk5RQ Server before version 1.20.10. An out-of-bounds acce… https://t.co/QGtBzsoRQPCVEnew – Twitter – Jan 20 2021 16:45CVE-2020-14360 A flaw was found in the http://X.Org Server before version 1.20.10. An out-of-bounds access in the XkbSetMap function may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confi……
CVEnew – CVE-2020-27858 This vulnerability allows remote attackers to disclose sensitive information on affected installatio… https://t.co/3L3EILjKJxCVEnew – Twitter – Jan 20 2021 20:45CVE-2020-27858 This vulnerability allows remote attackers to disclose sensitive information on affected installations of CA Arcserve D2D 16.5. Authentication is not required to exploit this vulnerability. The specific flaw exists within the getNews…
CVEnew – CVE-2021-1303 A vulnerability in the user management roles of Cisco DNA Center could allow an authenticated, remote… https://t.co/6IywaVFBZPCVEnew – Twitter – Jan 20 2021 20:46CVE-2021-1303 A vulnerability in the user management roles of Cisco DNA Center could allow an authenticated, remote attacker to execute unauthorized commands on an affected device. The vulnerability is due to improper enforcement of actions for…
Network Vulnerability in Oracle Database – CVE-2021-2018Nightwatch Cybersecurity – RSS – Jan 20 2021 22:31Summary Vulnerability in the Advanced Networking Option component of Oracle Database Server can lead to an MITM attack. Supported versions that are affected are 18c and 19c (Windows platform only). Details Difficult to exploit vulnerability…
Ongoing Campaigns
Sophisticated Watering Hole AttackSecurity Bloggers Network – Jan 20 2021 12:00Google’s Project Zero has exposed a sophisticated watering-hole attack targeting both Windows and Android: Some of the exploits were zero-days, meaning they targeted vulnerabilities that at the time were unknown to Google, Microsoft, and…
How to prepare for an effective phishing attack simulationCSO Online News – Jan 20 2021 10:00Over the last year I’ve noticed that small- to medium-sized organizations have done a better job reacting to vulnerabilities and zero…
InfoSecHotSpot – FBI Again Warns of Vishing Attacks Targeting Organizations https://t.co/gg5ntc5MCYInfoSecHotSpot – Twitter – Jan 20 2021 22:58FBI Again Warns of Vishing Attacks Targeting Organizations https://bit.ly/3casYdt
Anchor and Lazarus together again?Medium Cybersecurity – RSS – Jan 20 2021 14:53

Although Silobreaker has relied on what it regards as reliable sources while compiling the content herein, Silobreaker cannot guarantee the accuracy, completeness, integrity or quality of such content and no responsibility is accepted by Silobreaker in respect of such content. Readers must determine for themselves what reliance they should place on the compiled content herein.

Silobreaker
This website uses cookies.
See our privacy policy at www.silobreaker.com/legal