23 September 2020

This alert was created automatically by our award-winning intelligence product Silobreaker Online. Story selection is determined by an algorithm and based on a set of queries initially set by a Silobreaker user. Contact us here for more information.

Heat – Trending Malware and Threat Actors
Name Heat 1 Heat 7 Vol 1 Vol 7
TheDarkOverlord 29 42
LokiBot Trojan 18 26
DoppelPaymer Ransomware 8 15
WastedLocker 4 7
njRAT Malware 3 4
404 Keylogger 2 3
Evil Corp 2 2
CraftyCockney 2 5
NotPetya Ransomware 2 2
Kaiji Malware 1 1
Data Breaches
Secnewsbytes – Data Leak: Unsecured Server Exposed Bing Mobile App Data https://t.co/5NdEpjES7uSecnewsbytes – Twitter – Sep 22 2020 07:46Data Leak: Unsecured Server Exposed Bing Mobile App Data https://www.wizcase.com/blog/bing-leak-research/
Dinosn – Google Cloud Buckets Exposed in Rampant Misconfiguration https://t.co/kwhKNDa9VJDinosn – Twitter – Sep 22 2020 18:26Google Cloud Buckets Exposed in Rampant Misconfiguration https://threatpost.com/google-cloud-buckets-exposed-misconfiguration/159429/
Google Cloud Buckets Exposed in Rampant MisconfigurationThreatpost.com – Sep 22 2020 14:12A too-large percentage of cloud databases containing highly sensitive information are publicly available, an analysis shows.
cybersecboardrm – Google Cloud Buckets Exposed in Rampant Misconfiguration #Cybersecurity #infosec #security https://t.co/C7MHIyX3BYcybersecboardrm – Twitter – Sep 22 2020 14:42Google Cloud Buckets Exposed in Rampant Misconfiguration #Cybersecurity #infosec #security https://threatpost.com/google-cloud-buckets-exposed-misconfiguration/159429/
Hacker Groups
Taidoor – a truly persistent threatReversingLabs Blog – RSS – Sep 22 2020 14:56
A member The Dark Overlord group sentenced to 5 years in prisonTerabitWeb Blog – RSS – Sep 22 2020 09:47Original Post from Security Affairs Author: Pierluigi Paganini A United Kingdom national, member of ‘The…
Dark Overlord hacker jailedBoing Boing – Sep 22 2020 13:23A British man accused of copying patient records and threatening to sell them was sentenced to five years imprisonment by a U.S. court, reports the BBC. Nathan Wyatt, 39, operated under the aegis of hacking group "The Dark Overlord" and was also…
‘The Dark Overlord’ hacking group member sentenced to five years in prisonEngadget – Sep 22 2020 06:43Nathan Wyatt was extradited from the UK last year. A US district judge has sentenced a UK National to five years in federal prison for participating in the cybercrime activities of hacking collective group “The Dark Overlord.” Nathan Wyatt was…
Malware
WastedLocker explained: How this targeted ransomware extorts millions from victimsCSO Online News – Sep 22 2020 10:00WastedLocker definition WastedLocker is a ransomware program that started hitting businesses and other organizations in May 2020 and is known for its high ransom demands reaching millions of dollars per victim. It is the creation of a group of…
thegrugq – @berugijinjanai NotPetya. Generally the business of ransomware is a business. They have an incentive to honour thei… https://t.co/YapiSrZkiwthegrugq – Twitter – Sep 22 2020 18:54@berugijinjanai NotPetya. Generally the business of ransomware is a business. They have an incentive to honour their deals because otherwise people would stop paying.
Government issues alert on spread of information stealing LokiBot malwareSiliconANGLE – Sep 23 2020 02:46The U.S. Department of Homeland Security’s Cybersecurity and Infrastructure Agency has issued an alert in relation to the increased spread of LokiBot, a form of malware that is designed to steal confidential information. LokiBot itself has been around…
ZDNet – CISA warns of notable increase in LokiBot malware https://t.co/gxM1AinfflZDNet – Twitter – Sep 22 2020 19:02CISA warns of notable increase in LokiBot malware…
Vulnerabilities
CISA Pushes Gov’t Agencies to Patch ‘Zerologon’ FlawBank Info Security – Sep 22 2020 06:55Federal Agencies Need to Report Compliance by Wednesday U.S. government agencies are supposed to have now patched the "Zerologon" vulnerability by now, about six weeks after Microsoft issued a patch. CISA warns that too many systems remain unpatched.
thinksnews – CISA Pushes Gov’t Agencies to Patch ‘Zerologon’ Flaw https://t.co/U2lotNrGXj #infosec #databreach #breach https://t.co/qPJN9JkQPIthinksnews – Twitter – Sep 22 2020 07:15CISA Pushes Gov't Agencies to Patch 'Zerologon' Flaw https://www.databreachtoday.com/cisa-pushes-govt-agencies-to-patch-zerologon-flaw-a-15032 #infosec #databreach #breach https://twitter.com/thinksnews/status/1308303855495663616/photo/1
Feds Yell PATCH NOW over Windows AD ‘Zerologon’ VulnSecurity Bloggers Network – Sep 22 2020 16:08
thinksnews – CISA Pushes Government Agencies to Patch ‘Zerologon’ Flaw https://t.co/GPfKUVGMD6 #breach #cybersecurity… https://t.co/D6oG5dc2CZthinksnews – Twitter – Sep 22 2020 09:15CISA Pushes Government Agencies to Patch 'Zerologon' Flaw https://www.databreachtoday.com/cisa-pushes-government-agencies-to-patch-zerologon-flaw-a-15032 #breach #cybersecurity #securityawareness…
Ongoing Campaigns
9 top anti-phishing tools and servicesCSO Magazine – Sep 22 2020 10:12Phishing ranks low on the list of cyberattacks in terms of technological sophistication. Even more sophisticated phishing variants like spear phishing (focused and often personalized phishing attacks) and whaling (phishing attacks focused on…
Bit-and-piece DDoS attacks increased 570% in Q2 2020Help Net Security – News – Sep 23 2020 04:00Attackers shifted tactics in Q2 2020, with a 570% increase in bit-and-piece DDoS attacks compared to the same period last year, according to Nexusguard. Perpetrators used bit-and-piece attacks to launch various amplification and elaborate…
Fatal Hospital Hack Linked to RussiaInfosecurity – Latest News – Sep 22 2020 16:02Fatal Hospital Hack Linked to Russia A cyber-attack that caused a German hospital to refuse treatment to a woman who subsequently died has been…
Failed Auction Pushed Actors to Release Their Banking Trojan For FreeCyware – Sep 22 2020 18:36Cerberus is a banking trojan for Android that was first identified on underground forums in August 2019 and has been in use for private operations since then. What happened? Recently, the attackers behind this malware released the source code for free…

Although Silobreaker has relied on what it regards as reliable sources while compiling the content herein, Silobreaker cannot guarantee the accuracy, completeness, integrity or quality of such content and no responsibility is accepted by Silobreaker in respect of such content. Readers must determine for themselves what reliance they should place on the compiled content herein.

Silobreaker
This website uses cookies.
See our privacy policy at www.silobreaker.com/legal