Threat Reports

Cyber Alert – 25 June 2020

This alert was created automatically by our award-winning intelligence product Silobreaker Online. Story selection is determined by an algorithm and based on a set of queries initially set by a Silobreaker user. Contact productinfo[at]silobreaker[dot]com for more information.

Heat – Trending Malware and Threat Actors
Name Heat 1 Heat 7 Vol 1 Vol 7
LulzSec 16 17
CryCryptor 13 13
WastedLocker 14 41
Glupteba Trojan 10 10
Dridex Malware 12 24
Anonymous Group 16 27
Evil Corp 8 24
Sodinokibi Ransomware 16 41
Fxmsp 7 27
BitPaymer Ransomware 5 10
Data Breaches
Exposed Frost & Sullivan databases for sale on hacking forum
BleepingComputer.comJun 24 2020 11:30
U.S. business consulting firm Frost & Sullivan was breached after data from an unsecured backup folder exposed on the Internet was sold on a hacker forum. […]
Dinosn – A daily average of 80,000 printers exposed online via IPP https://t.co/JdAZvApvvC
Dinosn – TwitterJun 25 2020 05:20
A daily average of 80,000 printers exposed online via IPP https://securityaffairs.co/wordpress/105120/hacking/80000-printers-exposed-online-ipp.html
Twitter says some business users had their private data exposed
DataBreaches.netJun 24 2020 12:41
Zack Whittaker reports: Flip the “days since the last Twitter  security incident” back to zero. Twitter said Tuesday that it has emailed its business customers, such as those who advertise on the site, to warn that their information may have been…
BleepinComputer – Exposed Frost & Sullivan databases for sale on hacking forum – @LawrenceAbrams
https://t.co/4qvWFkCmKp
BleepinComputer – TwitterJun 24 2020 11:30
Exposed Frost & Sullivan databases for sale on hacking forum – @LawrenceAbrams
https://www.bleepingcomputer.com/news/security/exposed-frost-and-sullivan-databases-for-sale-on-hacking-forum/
Hacker Groups
‘Invisible god’ of networks: Comprehensive report analyses full impact of underground cyber heavyweight Fxmsp
SC Magazine UKJun 24 2020 16:42
1 hour ago News by Andrew McCorkell Group-IB, a Singapore-based cybersecurity company, issues a comprehensive report on infamous seller Fxmsp who made a name for himself selling access to corporate networks. A three-year analysis of Fxmsp’s activity on…
Fxmsp hackers made $1.5M selling access to corporate networks
CERT-EU – Latest Articles Ongoing Threats – RSSJun 24 2020 12:57
Researchers tracking Fxmsp’s ventures on underground forums counted the network intrusions associated with this actor and revealed the presumed identity of the attacker. Fxmsp became widely known outside hacker forums about a year ago when…
WikiLeaks founder charged with conspiring with Anonymous and LulzSec hackers
E-Crypto NewsJun 25 2020 01:02
WikiLeaks Founder Charged With Conspiring With Anonymous And LulzSec Hackers – E-Crypto News Home Tech News WikiLeaks founder charged with conspiring with Anonymous and LulzSec hackers
Malware
PoetRAT malware: what it is, how it works and how to prevent it | Malware spotlight
Security Bloggers NetworkJun 24 2020 13:00
Introduction As new malware constantly emerges, some have been taking advantage of recent events to make it easier to establish a foothold on a targeted system and wage a cyberattack. Once such… Go on to the site to read the full…
InfoSecHotSpot – Emerging Ransomware Targets Photos, Videos on Android Devices The CryCryptor malware strain is a brand-new family o… https://t.co/TT2E5PtIEn
InfoSecHotSpot – TwitterJun 25 2020 01:58
Emerging Ransomware Targets Photos, Videos on Android Devices The CryCryptor malware strain is a brand-new family of threats, leveraging COVID-19 to spread. https://bit.ly/3g1zQIN https://twitter.com/InfoSecHotSpot/status/1275971497522335744/photo/1
Dridex Operators Develop ‘WastedLocker’ Ransomware
SecurityWeek RSS FeedJun 24 2020 14:20
The threat actor behind the Dridex Trojan has released a new ransomware following months of development, Fox-IT researchers (part of NCC Group) reveal. …
Expert Insight On New WastedLocker ransomware
Information Security BuzzJun 24 2020 09:14
ZDNet is reporting Evil Corp, one of the biggest malware operations on the internet, has slowly returned to life after several of its members were charged by the US Department of Justice in December 2019. In a report shared with ZDNet today,…
Vulnerabilities
cybersecboardrm – Top 4 Flaws in Artificial Intelligence #ArtificialIntelligence #bigdata https://t.co/x8uJp249tU
cybersecboardrm – TwitterJun 24 2020 06:36
Top 4 Flaws in Artificial Intelligence #ArtificialIntelligence #bigdata https://www.analyticsinsight.net/top-4-flaws-artificial-intelligence/
VMware addresses critical flaws in Workstation and Fusion
Security AffairsJun 24 2020 20:50
VMware addressed 10 vulnerabilities affecting its ESXi, Workstation and Fusion products, including critical and high-severity code issues on the hypervisor. VMware has addressed 10 vulnerabilities affecting ESXi, Workstation and Fusion products,…
Low CVE-2020-4297: IBM Doors next
CERT-EU VulnerabilitiesApplicationsJun 24 2020 16:23
Description: IBM DOORS Next Generation (DNG/RRC) 6.0.2, 6.0.6, 6.0.6.1, and 7.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality…
NVIDIA patches high severity flaws in Windows, Linux drivers
BleepingComputer.comJun 24 2020 21:49
NVIDIA has released security updates to address security vulnerabilities found in GPU Display and CUDA drivers and Virtual GPU Manager software that could lead to code execution, denial of service, escalation of privileges, and information disclosure…
Ongoing Campaigns
New XORDDoS, Kaiji DDoS botnet variants target Docker servers
Security AffairsJun 24 2020 06:54
Operators behind XORDDoS and Kaiji DDoS botnets recently started targeting Docker servers exposed online, Trend Micro warns. Trend Micro researchers reported that operators behind …
Sodinokibi Ransomware Operators Target POS Software
Security WeekJun 24 2020 19:17
The threat actor behind the Sodinokibi ransomware was observed scanning the victim networks for credit card or point of sale (POS) software. Sodinokibi, Symantec’s security researchers reveal, was found on the networks of three organizations that had…
Evil Corp deploys new WastedLocker ransomware
DataBreaches.netJun 24 2020 12:42
Dennis Fisher writes: The Russian attack group responsible for distributing the Dridex malware and BitPaymer ransomware and was the target of sanctions from the Department of Justice last year has reemerged with a new strain of ransomware called…
Evil Corp’s ‘WastedLocker’ Campaign Demands Big Ransoms
Bank Info SecurityJun 24 2020 18:23
Researchers: Cybercrime Group, Formerly Known for Dridex, Is Not Exfiltrating Data Doug Olenick (DougOlenick) • June 24, 2020 The Evil Corp cybercrime group, originally known for its use of the Dridex banking Trojan, is now using new ransomware called…

Although Silobreaker has relied on what it regards as reliable sources while compiling the content herein, Silobreaker cannot guarantee the accuracy, completeness, integrity or quality of such content and no responsibility is accepted by Silobreaker in respect of such content. Readers must determine for themselves what reliance they should place on the compiled content herein.

More News

  • COVID-19 Alert – 08 July 2020

    Silobreaker's Daily COVID-19 Alert for 08 July 2020
  • Cyber Alert – 08 July 2020

    Cyber Alert: Exposed dating service databases leak sensitive info on romance-seekers...
  • COVID-19 Alert – 07 July 2020

    Silobreaker's Daily COVID-19 Alert for 07 July 2020
View all News

Request a demo

Get in touch