22 December 2020

This alert was created automatically by our award-winning intelligence product Silobreaker Online. Story selection is determined by an algorithm and based on a set of queries initially set by a Silobreaker user. Contact us here for more information.

Heat – Trending Malware and Threat Actors
Name Heat 1 Heat 7 Vol 1 Vol 7
Pegasus Malware 13 20
SUPERNOVA Webshell 12 38
Sunburst Backdoor 36 190
EMOTET Trojan 11 18
Bandook RAT 3 3
APT-C-23 2 6
APT29 5 40
Stuxnet 2 10
Clop Ransomware 2 4
Cult of the Dead Cow 1 1
Data Breaches
cybersecboardrm – Microsoft Azure breach left thousands of customer records exposed | TechRadar #CyberSecurity #Microsoft #Azure… https://t.co/josMHLF44ycybersecboardrm – Twitter – Dec 22 2020 01:14Microsoft Azure breach left thousands of customer records exposed | TechRadar #CyberSecurity #Microsoft #Azure #breach #customer #records https://www.techradar.com/news/microsoft-azure-breach-left-thousands-of-customer-records-exposed
troyhunt – @l33tguy @etienne_na @lopp @haveibeenpwned Because there was one breach. Imagine if, for every breach in… https://t.co/6PvDE0rVNZtroyhunt – Twitter – Dec 21 2020 20:59@l33tguy @etienne_na @lopp @haveibeenpwned Because there was one breach. Imagine if, for every breach in @haveibeenpwned I had to start breaking single incidents apart into smaller ones based on who had which data attributes exposed. Nightmare. Easy…
SecurityWeek – Email Address of Instagram Users Exposed via Facebook Business Suite https://t.co/dIju8ZeNwvSecurityWeek – Twitter – Dec 21 2020 16:08Email Address of Instagram Users Exposed via Facebook Business Suite https://www.securityweek.com/email-address-instagram-users-exposed-facebook-business-suite
Securityblog – Email Address of Instagram Users Exposed via Facebook Business Suite | https://t.co/08MJfOsUA9 https://t.co/5jXk6uTtkmSecurityblog – Twitter – Dec 21 2020 17:17Email Address of Instagram Users Exposed via Facebook Business Suite | http://SecurityWeek.Com https://www.securityweek.com/email-address-instagram-users-exposed-facebook-business-suite
Hacker Groups
New AridViper Malware Targets Outlook UsersCyware – Dec 21 2020 19:24Palo Alto’s Unit42 research team has recently found hacking group AridViper (aka APT-C-23) dropping a new malware to target victims in the Middle Eastern region. This was discovered while investigating AridViper’s Micropsia malware. What do we know?…
Magecart hackers accidentally exposed list of compromised victimsCyberSecurity Help – Blog – RSS – Dec 21 2020 08:13The list was included within the group’s dropper code.
TAC Security Introduces ESOF DarkSec Solution to Evaluate Data Theft VulnerabilitiesDigital Terminal – Dec 21 2020 12:25TAC Security has introduced a dark web threat intelligence solution, ESOF DarkSec, a ground breaking product that helps enterprises detect, measure, and identify the type of data available on the dark web about their companies. ESOF DarkSec adds to…
Malware
Partial lists of organizations infected with Sunburst malware released onlineZDNet Security – Dec 21 2020 20:40As security researchers dig through forensic evidence in the aftermath of the SolarWinds supply chain attack, victim names are slowly starting to surface.
ZDNet – Partial lists of organizations infected with Sunburst malware released online https://t.co/bvDDkDRzJbZDNet – Twitter – Dec 22 2020 01:00Partial lists of organizations infected with Sunburst malware released online…
Metacurity – RT @campuscodi: Last week and over the weekend, several security researchers cracked the Sunburst malware C&C subdomains and have released…Metacurity – Twitter – Dec 21 2020 21:04RT @campuscodi: Last week and over the weekend, several security researchers cracked the Sunburst malware C&C subdomains and have released partial lists of organizations who got infected with Sunburst malware

-Lists vary from 100 to 280…

BleepinComputer – Not much is known about the ransomware operation at this time other than their ransom notes look a lot like REvil n… https://t.co/9KvRUrUCx8BleepinComputer – Twitter – Dec 21 2020 21:28Not much is known about the ransomware operation at this time other than their ransom notes look a lot like REvil notes. https://twitter.com/BleepinComputer/status/1341133346781446145/photo/1
Vulnerabilities
Dell Wyse ThinOS flaws allow hacking think clientsSecurity Affairs – Dec 21 2020 21:57Multiple Dell Wyse thin client models are affected by critical vulnerabilities that could be exploited by a remote attacker to take over the devices. Critical vulnerabilities tracked as …
Summary of the recent Kubernetes Man-in-the-Middle Vulnerability (CVE-2020-8554)Reddit – Netsec – Dec 22 2020 00:00submitted by /u/pingpongfifa [link] [comments]
Protecting Against an Unfixed Kubernetes Man-in-the-Middle Vulnerability (CVE-2020-8554)Unit 42 – Palo Alto Networks Blog – Dec 21 2020 23:30A currently unpatched, medium-severity issue affecting all Kubernetes versions, CVE-2020-8554 can be mitigated in several ways. The post Protecting Against an…
Dell Wyse Thin Client Scores Two Perfect 10 Security FlawsSecurityPhresh – Dec 21 2020 16:51Come on in and enjoy our unprotected FTP server and unsigned configuration files Dell, which pitches its Wyse ThinOS as the most secure thin client operating system, plans to publish an advisory on Monday for two security vulnerabilities that are…
Ongoing Campaigns
Journalists’ Phones Hacked via iMessage Zero-Day ExploitSecurity Week – Dec 21 2020 15:06A recently observed Pegasus spyware infection campaign targeting tens of Al Jazeera journalists leveraged an iMessage zero-click, zero-day exploit for infection. The Israel-based , which has approximately 600 employees in Israel and abroad, made it to…
Hospitals combat rising denial-of-service attacks with network triageSiliconANGLE – Dec 21 2020 22:15Overworked hospitals badly need to keep services running with COVID-19 cases surging — and that’s making them a prime target for cybercriminals. They now face a very troubling increase in attempts at extortion through ransomware…
Well, on the bright side, the SolarWinds Sunburst attack will spur the cybersecurity field to evolve all over againThe Register – Dec 21 2020 09:38We have to be smarter than the baddies and expect the unexpected Column One of the great threats to our civilization is space weather. Specifically, the Sun's proven ability to target the planet with a tremendous cosmic belch of radiation, knocking…
NSO’s ‘Pegasus’ Deployed Against 36 Journalists in the Middle EastTechNadu – Dec 21 2020 09:18Journalists working at media outlets that expose Middle Eastern regimes targeted by ‘Pegasus’ spyware. The hacks were silent and interactionless, raising no warning flags on the compromised device. It is believed that the discovery is only a small part…

Although Silobreaker has relied on what it regards as reliable sources while compiling the content herein, Silobreaker cannot guarantee the accuracy, completeness, integrity or quality of such content and no responsibility is accepted by Silobreaker in respect of such content. Readers must determine for themselves what reliance they should place on the compiled content herein.

Silobreaker Daily Cyber Alert

Sign up for the latest news on data breaches, hacker groups, malware and vulnerabilities.

Silobreaker
This website uses cookies.
See our privacy policy at www.silobreaker.com/legal