29 April 2021

This alert was created automatically by our award-winning intelligence product Silobreaker Online. Story selection is determined by an algorithm and based on a set of queries initially set by a Silobreaker user. Contact us here for more information.

Heat – Trending Malware and Threat Actors
Name Heat 1 Heat 7 Vol 1 Vol 7
LockBit Ransomware 16 18
Babuk Locker 21 50
FluBot Android Banking Trojan 15 29
EMOTET Trojan 19 104
Cobalt Strike Beacon 5 6
Shlayer Trojan 4 27
Avaddon Ransomware 3 7
APT30 2 2
URSNIF 3 6
WickrMe Ransomware 2 4
Data Breaches
Experian API Exposed Credit Scores of Most AmericansSecurity Bloggers Network – Apr 28 2021 20:47Big-three consumer credit bureau Experian just fixed a weakness with a partner website that let anyone look up the credit score of tens of millions of Americans just by supplying their name and mailing address, KrebsOnSecurity has learned….
Experian API Exposed Credit Scores of Most Americans – Krebs on Security hxxps://krebsonsecurity[.]com/2021/04/experian-api-exposed-credit-scores-of-most-americans/Secnewsbytes – Twitter – Apr 28 2021 23:55Experian API Exposed Credit Scores of Most Americans – Krebs on Security hxxps://krebsonsecurity[.]com/2021/04/experian-api-exposed-credit-scores-of-most-americans/
Box enhances security features to prevent accidental data leaks, protect content in the cloudHelp Net Security – News – Apr 29 2021 00:45Box delivered more advanced security features to prevent accidental data leaks and protect content in the cloud. These include enhanced auto-classification functionality that extends to existing content and new exception handling capabilities for…
Enterprise Environments, Exposed Endpoints and Operating Systems – The Hunt For The Right Security SolutionSentinelOne – Apr 28 2021 16:34As security professionals, one of our primary challenges and responsibilities is understanding how to protect, detect, and respond to cyber attacks across all the operating systems within our enterprise environment. Most organizations today have…
Hacker Groups
APT Security: What You Need to Know about Advanced Persistent ThreatsHeimdal Security Blog – Apr 28 2021 14:29APT security is a concept that describes the preventive measures any company should take to avoid advanced persistent threats (APTs). Read on to find out how an APT attack works, what are the clues that indicate your network might be compromised…
>we responded
EQUATION GROUP probably has the biggest erection right now
da_667 – Twitter – Apr 29 2021 01:53>we responded
EQUATION GROUP probably has the biggest erection right now
APT actors increasingly turn to exploits to launch attacksITProPortal – RSS – Apr 28 2021 08:30Gullible humans may be great for launching a cyberattack, but a criminal isn't going to pass up on an opportunity to exploit a flaw.
Malware
How to Remove Ranzy Ransomware?LIFARS Blog – Apr 28 2021 13:15Ranzy is simply a ransomware-as-a-service (RaaS) offering. It is usually through email payloads get distributed. Simultaneously, some reports have also come to its delivery through the web (driven-by-downloads). Before being named Ranzy, it…
The Sodinokibi Chronicles: A (R)Evil Cybercrime Gang Disrupts Organizations for Trade Secrets and CashSecurity Intelligence – Apr 28 2021 20:00It likes big game hunting, it enjoys deploying Cobalt Strike and it dabbles in critical vulnerability abuse. It’s known as …
Android Malware ‘FluBot’ Appears to Be Unstoppable NowTechNadu – Apr 28 2021 09:03FluBot is back on the rise and is spreading across Europe rapidly, so it could soon reach the U.S. The particular malware remains pretty elusive thanks to the constantly changing C2 map. The Spanish police delivered a blow to FluBot distributors…
New video on the REVIL Ransomware attack affecting an Apple supplier.
hxxps://www[.]youtube[.]com/watch?v=Yds1bSAC8O0
leotpsc – Twitter – Apr 28 2021 19:53New video on the REVIL Ransomware attack affecting an Apple supplier.
hxxps://www[.]youtube[.]com/watch?v=Yds1bSAC8O0
Vulnerabilities
ISC discloses three BIND vulnerabilities (CVE-2021-25214, CVE-2021-25215, and CVE-2021-25216)Open Source Security – Apr 29 2021 01:11Posted by Michael McNally on Apr 28 On April 28, 2021, we (Internet Systems Consortium) disclosed three vulnerabilities affecting our BIND 9 software: CVE-2021-25214: A broken inbound incremental zone update (IXFR) can cause named to terminate…
Apple Patches Zero-day Flaw Actively Exploited by Shlayer MalwareMalwareTips.com – Apr 28 2021 09:21An actively exploited zero-day vulnerability in macOS has been patched by Apple. The vulnerability, one of the most serious flaws in macOS to be discovered, allows malware to bypass File…
CVE-2021-2321 Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The supported version that is affected is Prior to 6.1.20. Easily exploitable vulnerability allows high privileged attacker with logon to the inf… hxxps://cve[.]mitre[.]org/cgi-bin/cvename.cgi?name=CVE-2021-2321CVEnew – Twitter – Apr 28 2021 21:45CVE-2021-2321 Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The supported version that is affected is Prior to 6.1.20. Easily exploitable vulnerability allows high privileged attacker with logon to the…
Google addresses a high severity flaw in V8 engine in ChromeSecurity Affairs – Apr 28 2021 13:46Google released updates for Chrome 90 that address a new serious issue, tracked as CVE-2021-21227, in the V8 JavaScript engine used by the web browser. Google has released security updates for Chrome 90 that…
Ongoing Campaigns
Chinese Cyberspies Target Military Organizations in Asia With New MalwareSecurity Week – Apr 29 2021 04:17A cyber-espionage group believed to be sponsored by the Chinese government has been observed targeting military organizations in Southeast Asia in attacks involving previously undocumented malware, Bitdefender reported on Wednesday. over half a decade…
Protecting Industrial Control Systems Against Cyberattacks – Part 1Security Bloggers Network – Apr 28 2021 17:24
Watch out! Android Flubot spyware is spreading fastMalwarebytes Unpacked – Apr 28 2021 17:06Using a proven method of text messages about missed deliveries, an old player on the Android malware stage has returned for an encore. This time it seems to be very active, especially in the UK where Android users are being targeted by text…
Average Ransom Surges 43% After Accellion AttacksInfosecurity – Latest News – Apr 28 2021 09:45Average Ransom Surges 43% After Accellion Attacks The average payment to ransomware groups has surged by 43% over the past quarter, driven by the threat actors behind the Accellion attacks, according to Coveware. The security vendor’s…

Although Silobreaker has relied on what it regards as reliable sources while compiling the content herein, Silobreaker cannot guarantee the accuracy, completeness, integrity or quality of such content and no responsibility is accepted by Silobreaker in respect of such content. Readers must determine for themselves what reliance they should place on the compiled content herein.

Silobreaker Daily Cyber Alert

Sign up for the latest news on data breaches, hacker groups, malware and vulnerabilities.

Silobreaker
This website uses cookies.
See our privacy policy at www.silobreaker.com/legal