24 November 2020

This alert was created automatically by our award-winning intelligence product Silobreaker Online. Story selection is determined by an algorithm and based on a set of queries initially set by a Silobreaker user. Contact us here for more information.

Heat – Trending Malware and Threat Actors
Name Heat 1 Heat 7 Vol 1 Vol 7
Cobalt Strike Beacon 11 11
PlugX Trojan 5 5
Hancitor 4 4
PYSA Ransomware 3 4
Mount Locker Ransomware 3 20
Malsmoke 2 4
WebNavigator Browser 2 10
Anonymous Group 2 7
Carbanak 2 19
Pony Trojan 1 1
Data Breaches
Dinosn – urlhunter – a recon tool that allows searching on URLs that are exposed via shortener services
https://t.co/A1vjshw7Gt
Dinosn – Twitter – Nov 23 2020 15:38urlhunter – a recon tool that allows searching on URLs that are exposed via shortener services
https://github.com/utkusen/urlhunter
kfalconspb – RT @Dinosn: urlhunter – a recon tool that allows searching on URLs that are exposed via shortener services
https://t.co/A1vjshw7Gt
kfalconspb – Twitter – Nov 23 2020 19:02RT @Dinosn: urlhunter – a recon tool that allows searching on URLs that are exposed via shortener services
https://github.com/utkusen/urlhunter
ZDNet – OAIC has fielded zero complaints and received no reported COVIDSafe breaches https://t.co/6UxGOWxokfZDNet – Twitter – Nov 23 2020 08:30OAIC has fielded zero complaints and received no reported COVIDSafe breaches…
ZDNet – OAIC has fielded zero complaints and received no reported COVIDSafe breaches https://t.co/vkD3pWyreMZDNet – Twitter – Nov 23 2020 13:00OAIC has fielded zero complaints and received no reported COVIDSafe breaches…
Hacker Groups
Anonymous Hacks Uganda Police WebsiteTerabitWeb Blog – RSS – Nov 23 2020 16:12Original Post from InfoSecurity Magazine Author: Anonymous Hacks Uganda Police Website Hacktivists have reportedly downed…
InfosecurityMag – Anonymous Hacks Uganda Police Website https://t.co/R6YRW4jVcfInfosecurityMag – Twitter – Nov 23 2020 16:28Anonymous Hacks Uganda Police Website https://www.infosecurity-magazine.com/news/anonymous-hacks-uganda-police?utm_source=twitterfeed&utm_medium=twitter
Accused Ringleader of FIN7 Hacking Group Pleads GuiltySeclists.org – Data Loss – Nov 23 2020 16:07Posted by Destry Winant on Nov 23…
anon_indonesia – The Anonymous Indonesia News Daily is out! https://t.co/lDrd5Z2szM #jakpostanon_indonesia – Twitter – Nov 24 2020 03:14The Anonymous Indonesia News Daily is out! https://paper.li/anon_indonesia/1435572762?edition_id=34756320-2e03-11eb-a6b9-002590a5ba2d #jakpost
Malware
Massive threat campaign strikes open-source repos, Sonatype spots new CursedGrabber malwareSecurity Affairs – Nov 23 2020 08:32Sonatype’s deep dive research allowed to identify a new family of Discord malware called CursedGrabber. Sonatype has discovered more malware in the npm registry which, following our analysis and multiple cyber threat intelligence reports, has led…
FBI issued an alert on Ragnar Locker ransomware activitySecurity Affairs – Nov 23 2020 09:06The U.S. FBI is warning private industry partners of a surge in Ragnar Locker ransomware activity following a confirmed attack from April 2020. The U.S. Federal Bureau of Investigation (FBI) issued a flash alert (MU-000140-MW) to warn private…
TA416 APT Rebounds With New PlugX Malware VariantThreatpost.com – Nov 23 2020 20:38The TA416 APT has returned in spear phishing attacks against a range of victims – from the Vatican to diplomats in Africa – with a new Golang version of its PlugX malware loader.
InfoSecHotSpot – Cyber News Rundown: REvil Ransomware Strikes REvil Ransomware Strikes Hosting Provider In recent days the web hosti… https://t.co/wY1BmjKNDSInfoSecHotSpot – Twitter – Nov 24 2020 05:58Cyber News Rundown: REvil Ransomware Strikes REvil Ransomware Strikes Hosting Provider In recent days the web hosting provider https://bit.ly/3fe35cb has been working to recover from a ransomware attack targeting many of their core systems. While the…
Vulnerabilities
CVEnew – CVE-2020-25660 A flaw was found in the Cephx authentication protocol in versions before 15.2.6 and before 14.2.14,… https://t.co/1zja01w7K2CVEnew – Twitter – Nov 23 2020 22:45CVE-2020-25660 A flaw was found in the Cephx authentication protocol in versions before 15.2.6 and before 14.2.14, where it does not verify Ceph clients correctly and is then vulnerable to replay attacks in Nautilus. This flaw allows an attacker with…
GitHub fixes ‘high severity’ security flaw spotted by GoogleZDNet Security – Nov 23 2020 11:35Two weeks after Google disclosed a security flaw in GitHub, the Microsoft-owned site has fixed the issue.
Securityblog – Exploitation of Cisco Security Manager RCE flaws ‘imminent’ | The Daily Swig
https://t.co/wIdG5Dja96
Securityblog – Twitter – Nov 23 2020 14:24Exploitation of Cisco Security Manager RCE flaws ‘imminent’ | The Daily Swig
https://portswigger.net/daily-swig/exploitation-of-cisco-security-manager-rce-flaws-imminent
helpnetsecurity – Financial services lead when it comes to fixing open source flaws – https://t.co/uvPaPFLWyE – @Veracode @WeldPond… https://t.co/QJYo30nIO8helpnetsecurity – Twitter – Nov 23 2020 15:03Financial services lead when it comes to fixing open source flaws – https://www.helpnetsecurity.com/2020/11/20/fixing-open-source-flaws/ – @Veracode @WeldPond #cybersecurity #security #infosecurity #itsecurity #CISO #cybersecuritynews #securitynews…
Ongoing Campaigns
Be Prepared for Increased DDoS Attacks Ahead of Black FridaySecurity Intelligence – Nov 23 2020 12:00Black Friday is prime time for distributed denial-of-service (DDoS) attacks, especially as retail goes online even more than usual in 2020. Forecasters predict e-commerce sales will soar to new heights this holiday season, …
Ransomware gangs hunt for tax software to ratchet up pressure on victimsSC Magazine US – Nov 24 2020 03:44Pictured: TurboTax headquarters. The Mount Locker ransomware group is reportedly targeting victims’ files that feature extensions associated with TurboTax software from Intuit. (Coolcaesar at en.wikipedia, CC BY-SA 3.0…
Rising Ransomware Threats in Manufacturing SectorCyware – Nov 23 2020 12:36This year, the number of publicly documented ransomware attacks on the manufacturing sector has surged. This is due to the constant evolution of threat actors in finding ways to halt operations by impacting the infrastructure supporting industrial…
Microsoft & Google Impersonation Attacks Are on the Rise – How to Stay SafeCheck Point – Nov 23 2020 11:00Do you feel that your inbox is burdened with an increasing number of phisy-looking emails, now more than ever before? Well, that’s because it actually is. According to Check Point Research Q3 Phishing Report , email-based phishing attacks saw the…

Although Silobreaker has relied on what it regards as reliable sources while compiling the content herein, Silobreaker cannot guarantee the accuracy, completeness, integrity or quality of such content and no responsibility is accepted by Silobreaker in respect of such content. Readers must determine for themselves what reliance they should place on the compiled content herein.

Silobreaker Daily Cyber Alert

Sign up for the latest news on data breaches, hacker groups, malware and vulnerabilities.

Silobreaker
This website uses cookies.
See our privacy policy at www.silobreaker.com/legal