Threat Reports

Daily Alert – 09 January 2020

Silobreaker’s Daily Cyber Alert is created and distributed automatically by using our award-winning intelligence product Silobreaker Online.

Heat – Trending Malware and Threat Actors
Name Heat 1 Heat 7 Vol 1 Vol 7
Sodinokibi Ransomware 15 36
Magecart Group 5 17
FALLCHILL Malware 2 2
AppleJeus Trojan 2 2
MegaCortex Ransomware 2 2
Lazarus Group 3 3
APT34 2 5
Mirai Trojan 2 4
Rietspoof Malware 1 1
Cyax Malware 1 1
Data Breaches
Are Hotel Guests Safe From a Data Breach?
Security Bloggers NetworkJan 08 2020 16:10
Google Reaches $7.5 Million Settlement Over Google+ Data Breaches
CywareJan 08 2020 12:45
| The incidents in question had exposed the data of over 10 million users. The proposed settlement fund will be diverted to pay class claimants and attorney’s fees and costs. Google has agreed to pay $7.5 million to settle class-action lawsuits filed…
Data Breach Affects 50,000 Patients at Minnesota Hospital
DigitalMunitionJan 08 2020 08:35
Alomere Health, a Minnesota-based hospital operator, is the latest victim of a data breach that affected 49,351 individuals, scmagazine reported. In an official report, the health care provider revealed that an unknown intruder gained access to two…
Nigerian Betting Company Denies Breach
Infosecurity – Latest NewsJan 08 2020 15:53
Nigerian Betting Company Denies Breach Nigerian online betting company SureBet247 has told the public not to be deceived by "false" reports that the firm has suffered a serious data…
Hacker Groups
Magecart customers pay twice due to hacking of website code
SC Magazine UKJan 08 2020 13:45
46 minutes ago Hackers access website source code to inject malicious JavaScript, then payment details submitted get sent to two addresses – the retailer and the crooks. Customers of photography retailer Focus Camera ended up paying twice for purchased…
Magecart Hits Parents and Students via Blue Bear Attack
Seclists.org – Data LossJan 08 2020 15:43
Posted by Destry Winant on Jan 08 https://threatpost.com/magecart-blue-bear-attack/151585/ The latest attack takes aim at a vertical-specific e-commerce platform. Blue Bear Software, an administration and e-commerce platform for K-12 schools and…
Kaspersky: North Korean hackers getting more careful, targeted in financial hacks
Cyberscoop – NewsJan 08 2020 22:53
North Korean hackers have for years been using different tactics to run cyber-enabled financial heists, most recently using front companies to compromise cryptocurrency-related businesses. And although some of the …
The risks and rewards of ransomware
DigitalMunitionJan 08 2020 18:48
Ransomware, the locking up of large networks through hacking until payment is made, is exploding. Recent attacks have crippled more than 200 city and local government networks in Baltimore, Albany and Atlanta, while specific hacking tools have been…
Malware
From Mega to Giga: Cross-Version Comparison of Top MegaCortex Modifications
Security IntelligenceJan 08 2020 11:00
IBM X-Force Incident Response and Intelligence Services (IRIS) researchers have been responding to and analyzing the …
REvil ransomware exploiting VPN flaws made public last April
Naked Security – SophosJan 08 2020 12:39
Researchers report flaws, vendors issue patches, organisations apply them – and everyone lives happily ever after. Right? Wrong!
Malware spotlight: Mirai
Security Bloggers NetworkJan 08 2020 15:49
Introduction If you ask any number of information security experts about emerging platforms you will hear many answers, but the Internet of Things, or IoT, will be one of the top responses. Attackers… Go on to the site to read the full…
Unpatched VPN makes Travelex latest victim of “REvil” ransomware
ArsTechnicaJan 08 2020 16:14
Enlarge / It may take longer to get your money changed when you travel, since Travelex is doing everything on paper because of a ransomware attack. iStock Editorial/ In April of 2019, Pulse Secure issued an urgent patch to a vulnerability in its…
Vulnerabilities
CVE-2019-17026: Zero-Day Vulnerability in Mozilla Firefox Exploited in Targeted Attacks
Tenable BlogJan 08 2020 21:05
Mozilla releases patch to address Firefox flaw being used as part of targeted attacks. Background On January 8, Mozilla Foundation …
Firefox gets patch for critical zeroday that’s being actively exploited
ArsTechnicaJan 09 2020 02:03
App on Google Play exploited Android bug to deliver spyware
DigitalMunitionJan 08 2020 14:41
Google has pulled three malicious apps from Google Play, one of which exploits a recently patched kernel privilege escalation bug in Android (CVE-2019-2215) to install the app aimed at spying on users. About CVE-2019-2215 The existence of CVE-2019-2215…
TikTok vulnerabilities made it possible to steal personal data, expose private videos
SiliconANGLEJan 08 2020 19:45
For the better part of 2019, TikTok contained vulnerabilities that could have enabled hackers to access users’ personal information, payment details and private videos. The flaws were detailed today by a group of researchers from publicly-traded…
Ongoing Campaigns
From Mega to Giga: Cross-Version Comparison of Top MegaCortex Modifications
Security IntelligenceJan 08 2020 11:00
IBM X-Force Incident Response and Intelligence Services (IRIS) researchers have been responding to and analyzing the …
Unpatched VPN makes Travelex latest victim of “REvil” ransomware
ArsTechnicaJan 08 2020 16:14
Enlarge / It may take longer to get your money changed when you travel, since Travelex is doing everything on paper because of a ransomware attack. iStock Editorial/ In April of 2019, Pulse Secure issued an urgent patch to a vulnerability in its…
Magecart customers pay twice due to hacking of website code
SC Magazine UKJan 08 2020 13:45
46 minutes ago Hackers access website source code to inject malicious JavaScript, then payment details submitted get sent to two addresses – the retailer and the crooks. Customers of photography retailer Focus Camera ended up paying twice for purchased…
Attackers Pick up Nasty Phishing Tactic to Gain Full Access to Users’ Data Stored in the Cloud
CywareJan 08 2020 12:45
| The phishing lure, which starts with a spoofed link, is being widely used by attackers to ensnare users of many other cloud providers. The phishing attack targets Office 365 users with an email that contains a malicious link within. In early December…

Although Silobreaker has relied on what it regards as reliable sources while compiling the content herein, Silobreaker cannot guarantee the accuracy, completeness, integrity or quality of such content and no responsibility is accepted by Silobreaker in respect of such content. Readers must determine for themselves what reliance they should place on the compiled content herein.

More News

  • Daily Alert – 29 January 2020

    Daily Alert: Update: Top 5 Health Data Breaches...
  • Daily Alert – 28 January 2020

    Daily Alert: Where to find data breaches...
  • Daily Alert – 27 January 2020

    Daily Alert: State, Private Attorneys Help Indiana Businesses Understand Data Breach Issues...
View all News

Request a demo

Get in touch