Threat Reports

Cyber Alert – 29 June 2020

This alert was created automatically by our award-winning intelligence product Silobreaker Online. Story selection is determined by an algorithm and based on a set of queries initially set by a Silobreaker user. Contact productinfo[at]silobreaker[dot]com for more information.

Heat – Trending Malware and Threat Actors
Name Heat 1 Heat 7 Vol 1 Vol 7
Lucifer Malware 11 38
CryptoCore Group 3 17
Clop Ransomware 2 13
Stuxnet 2 5
Mirai Trojan 2 16
Anonymous Brasil 1 1
Equation Group 1 1
PupyRAT 1 1
Platinum Group 1 1
DoublePulsar 1 2
Data Breaches
Cyber_War_News – RT @PogoWasRight: Brazilian federal police investigates presidential data leak: https://t.co/nWu3eFNVQO
I’m not sure which country is worse…
Cyber_War_News – TwitterJun 28 2020 12:37
RT @PogoWasRight: Brazilian federal police investigates presidential data leak: https://www.zdnet.com/article/brazilian-federal-police-investigates-presidential-data-leak/
I'm not sure which country is worse: Brazil or India — both have had such…
A Popular Study Tool Accidentally Exposed Millions Of Student Records
Forbes – Cybersecurity RSSJun 28 2020 16:07
An improperly-secured online database has left the private information of more than a million U. S. students exposed.
Brazilian federal police investigates presidential data leak
Office of Inadequate SecurityJun 28 2020 12:20
Angelica Mari reports on what sounds like a massive hack of government agencies and more in Brazil: The Brazilian federal…
Turkey: KVKK fines gaming company TRY 1,100,000 for breach notification violations
DataBreaches.netJun 28 2020 12:22
OneTrust DataGuidance reports: The Personal Data Protection Authority (‘KVKK’) published, on 23 June 2020, its decision (‘the Decision’) of 16 April 2020, fining a gaming company a total of TRY 1,100,000 (approx. €142,980) for…
Hacker Groups
ZDNet – CryptoCore hacker group has stolen more than $200m from cryptocurrency exchanges https://t.co/dFIeHP7m5O
ZDNet – TwitterJun 28 2020 12:30
CryptoCore hacker group has stolen more than $200m from cryptocurrency exchanges…
ZDNet – CryptoCore hacker group has stolen more than $200m from cryptocurrency exchanges https://t.co/CsJss3Icep
ZDNet – TwitterJun 28 2020 17:30
CryptoCore hacker group has stolen more than $200m from cryptocurrency exchanges…
PLATINUM APT Found Using Text-based Steganography to Hide Backdoor
Reddit – BlueTeamSec – RSSJun 28 2020 10:38
submitted by /u/digicat [link]…
anon_indonesia – The Anonymous Indonesia News Daily is out! https://t.co/6ay56NVHku #bank #ddos
anon_indonesia – TwitterJun 29 2020 03:14
The Anonymous Indonesia News Daily is out! https://paper.li/anon_indonesia/1435572762?edition_id=b24e8c20-b9b6-11ea-9a6a-002590a5ba2d #bank #ddos
Malware
A new Malware strain dubbed as ‘Lucifer’ is affecting most of the Windows PCs, abusing critical vulnerabilities
DataBreaches.netJun 28 2020 12:21
Metal Messiah reports: A new variant of a powerful cryptojacking and DDoS-based malware is exploiting severe vulnerabilities in Windows machines, and affecting them in the process. Dubbed as “Lucifer”, this new malware is part of an active campaign…
Hybrid Malware ‘Lucifer’ Includes Cryptojacking, DDoS Capabilities
Security WeekJun 29 2020 04:17
A recently identified piece of cryptojacking malware includes functionality that enables its operators to launch distributed denial of service (DDoS) attacks, Palo Alto Networks reports. Dubbed Lucifer, the malware was first observed on May 29, as…
Vulnerabilities
New vulnerabilities in open source packages down 20% compared to last year
Help Net Security – NewsJun 29 2020 04:30
New vulnerabilities in open source packages were down 20% compared to last year suggesting security of open source packages and containers are heading in a positive direction, according to Snyk. Well known vulnerabilities, such as cross-site…
bad_packets – @MasafumiNegishi Anyone confirm the initial vector of compromise was CVE-2019-19781 yet?
bad_packets – TwitterJun 29 2020 02:41
@MasafumiNegishi Anyone confirm the initial vector of compromise was CVE-2019-19781 yet?
NA – CVE-2020-15365 – LibRaw before 0.20-Beta3 has an out-of-bounds…
CERT-EU VulnerabilitiesApplicationsJun 28 2020 16:38
This vulnerability is currently undergoing analysis and not all information is available. Please check back soon to view the completed vulnerability summary LibRaw before 0.20-Beta3 has an out-of-bounds write in parse_exif() in metadata\exif_gps.cpp…
PuTTY — Release 0.74 fixes two security vulnerabilities
CERT-EU VulnerabilitiesApplicationsJun 28 2020 14:54
[Release 0.74] fixes the following security issues: New configuration option to disable PuTTY's default policy of changing its host key algorithm preferences to prefer keys it already knows. (There is a theoretical information leak in this policy.)…
Ongoing Campaigns
Lucifer malware infects Windows & launch DDoS attack using NSA exploits
HackReadJun 28 2020 16:47
By Waqas Lucifer malware is capable of launching DDoS attacks and… This is a post from HackRead.com Read the original post: Lucifer…
Security Affairs newsletter Round 270
Security AffairsJun 28 2020 10:58
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box….
Metacurity – New Demonic Version of ‘Hybrid Crypto-Jacking Malware’ Called Lucifer Is Capable of Launching DDoS Attacks, Droppin… https://t.co/bfeRcr583E
Metacurity – TwitterJun 29 2020 01:04
New Demonic Version of 'Hybrid Crypto-Jacking Malware' Called Lucifer Is Capable of Launching DDoS Attacks, Dropping XMRig @HackRead…

Although Silobreaker has relied on what it regards as reliable sources while compiling the content herein, Silobreaker cannot guarantee the accuracy, completeness, integrity or quality of such content and no responsibility is accepted by Silobreaker in respect of such content. Readers must determine for themselves what reliance they should place on the compiled content herein.

More News

  • COVID-19 Alert – 08 July 2020

    Silobreaker's Daily COVID-19 Alert for 08 July 2020
  • Cyber Alert – 08 July 2020

    Cyber Alert: Exposed dating service databases leak sensitive info on romance-seekers...
  • COVID-19 Alert – 07 July 2020

    Silobreaker's Daily COVID-19 Alert for 07 July 2020
View all News

Request a demo

Get in touch