30 December 2020

This alert was created automatically by our award-winning intelligence product Silobreaker Online. Story selection is determined by an algorithm and based on a set of queries initially set by a Silobreaker user. Contact us here for more information.

Heat – Trending Malware and Threat Actors
Name Heat 1 Heat 7 Vol 1 Vol 7
Nefilim Ransomware 3 10
WebNavigator Browser 2 2
EMOTET Trojan 7 51
eGobbler 1 1
VeryMal 1 1
KryptoCibule 1 1
Shade Ransomware 1 1
Revenge RAT 1 1
Payleak Malware 1 1
ScamClub Hacker Group 1 1
Data Breaches
Kawasaki discloses security breach, potential data leakBleepingComputer.com – Dec 29 2020 13:15Japan's Kawasaki Heavy Industries announced a security breach and potential data leak after unauthorized access to a Japanese company server from multiple overseas offices. […]
2020 Had Its Share Of Memorable Hacks And BreachesNews ≈ Packet Storm – Dec 29 2020 18:37
Metacurity – Irish murderer appeals conviction on grounds of EU data law breach https://t.co/qxaVuKxBkGMetacurity – Twitter – Dec 29 2020 13:15Irish murderer appeals conviction on grounds of EU data law breach https://www.theguardian.com/world/2020/dec/28/irish-murderer-appeals-conviction-on-grounds-of-eu-data-law-breach
OR: Treasure Valley Community College notifies community members of breach after late discoveryOffice of Inadequate Security – Dec 29 2020 20:48Treasure Valley Community College (“TVCC”) has become aware of a data security incident that may have involved…
Hacker Groups
Chat Digest – Ghost Squad Hackers 2020/12/29 18:28 – 18:29 UTC“Ghost Squad Hackers” – Telegram – Dec 29 2020 18:28[18:28] : [18:28] : [18:29] : Tap in Cali will never die 🧢💰
APT41Archilovers – Dec 29 2020 07:09An old post office building converted to residential. This is the context of this classic milanese apartment that has been completely renovated with a conservative spirit. Most original elements – like the the stucco decorations, the window frames,…
Analysis of Derusbi – Used By APT19IBM X-Force Exchange – Advisory Tag – RSS – Dec 29 2020 18:48Summary Cyber Geeks presents an analysis of a backdoor called Derusbi, which is associated with APT19 (aka Codoso, C0d0so, Sunshop Group). Threat Type Malware, Backdoor, APT Overview Cyber Geeks presents a paper that analyzes a backdoor called Derusbi….
anon_indonesia – The Anonymous Indonesia News Daily is out! https://t.co/tlTIMKiAlH #jakpostanon_indonesia – Twitter – Dec 30 2020 03:14The Anonymous Indonesia News Daily is out! https://paper.li/anon_indonesia/1435572762?edition_id=2cb24570-4a4d-11eb-a9a9-002590a5ba2d #jakpost
Malware
Whirlpool hit in Nefilim ransomware attackReddit – Netsec – Dec 29 2020 14:51submitted by /u/malware_bender [link]…
2020 was the worst year ever for ransomware. 2021 will be more of the sameSC Magazine US – Dec 29 2020 16:29With 2020 coming to a close, SC Media is delivering through a series of articles our picks of the most high impact events and trends of the last year, which we predict will factor into community strategies in 2021 and beyond. This is the third in…
Revenge RAT targeting users in South AmericaReddit – Netsec – Dec 29 2020 16:24submitted by /u/harroldhino [link] [comments]
Metacurity – Home appliance giant Whirlpool hit in Nefilim ransomware attack https://t.co/yfUfFomRjNMetacurity – Twitter – Dec 29 2020 13:08Home appliance giant Whirlpool hit in Nefilim ransomware attack https://www.bleepingcomputer.com/news/security/home-appliance-giant-whirlpool-hit-in-nefilim-ransomware-attack/#.X-sqXnVsF1A.twitter
Vulnerabilities
CVEnew – CVE-2020-25847 This command injection vulnerability allows attackers to execute arbitrary commands in a compromised… https://t.co/N3QBUhLH5uCVEnew – Twitter – Dec 29 2020 08:45CVE-2020-25847 This command injection vulnerability allows attackers to execute arbitrary commands in a compromised application. QNAP have already fixed this vulnerability in the following versions of QTS and QuTS hero….
thinksnews – Transitioning from vulnerability management to vulnerability remediation https://t.co/lDBHxWPh9X https://t.co/VPbvyYNI9rthinksnews – Twitter – Dec 29 2020 07:00Transitioning from vulnerability management to vulnerability remediation http://dlvr.it/RpWkwz https://twitter.com/thinksnews/status/1343814029400150016/photo/1
Re: [FD] CVE-2020-8150 – Remote Code Execution as SYSTEM/root via BackblazeSeclists.org – Full Disclosure – Dec 29 2020 08:48Posted by Jason Geffner on Dec 29 The message I received on April 17th, 2020 was as follows: "We recently released a Win fix and Mac build from this code base should have the same fix (Mac version 7.1.0.434)."
InfoSecHotSpot – Transitioning from vulnerability management to vulnerability remediation Like many people, I’m glad 2020 is almost… https://t.co/eMb25atfInInfoSecHotSpot – Twitter – Dec 29 2020 10:28Transitioning from vulnerability management to vulnerability remediation Like many people, I’m glad 2020 is almost over. I am, however, excited about 2021. Here are three trends I believe will impact how well (or not) companies will be able to…
Ongoing Campaigns
What is malvertising? And how to protect against itCSO Magazine – Dec 29 2020 10:25Malvertising definition Malvertising, a word that blends malware with advertising, refers to a technique cybercriminals use to target people covertly. Typically, they buy ad space on trustworthy websites, and although their ads appear legitimate, they…
Pegasus Spyware: Now Targets New Zero-Day in iPhoneCyware – Dec 29 2020 19:24Pegasus spyware has been recently used by four nation-state-backed APT groups, possibly with links to countries in the Middle East. The spy malware exploited a zero-day in the iMessage feature for Apple’s iPhone. What has happened? The attack was…
Zero-Day Spear Phishing Attack Targeting Covid-19 Pharmaceuticals—Likely Nation-State Threat ActorsSecurity Bloggers Network – Dec 29 2020 22:19Today, SlashNext Threat Labs observed a flurry of spear-phishing attacks targeting companies at the forefront of Covid-19 vaccines and therapeutics development. These attacks are active, and as of this writing, there are more than 800 spear…
What is Spoofing and How to Prevent a Spoofing AttackMediaCenter Panda Security – Dec 29 2020 16:55

Although Silobreaker has relied on what it regards as reliable sources while compiling the content herein, Silobreaker cannot guarantee the accuracy, completeness, integrity or quality of such content and no responsibility is accepted by Silobreaker in respect of such content. Readers must determine for themselves what reliance they should place on the compiled content herein.

Silobreaker
This website uses cookies.
See our privacy policy at www.silobreaker.com/legal