This alert was created automatically by our award-winning intelligence product Silobreaker Online. Story selection is determined by an algorithm and based on a set of queries initially set by a Silobreaker user. Contact productinfo[at]silobreaker[dot]com for more information.Heat - Trending Malware and Threat ActorsNameHeat 1Heat 7Vol 1Vol 7Mirai Trojan1013Evil Corp833DarkCrewFriends56WastedLocker851GoldenSpy626Magecart Group77Glupteba Trojan416NotPetya Ransomware520Lucifer Malware426Tsunami Backdoor38 Data Breaches Domestic Abuse Victims Exposed in Cloud Misconfiguration [1]Infosecurity - Latest News - Jun 26 2020 08:30 [2]Domestic Abuse Victims Exposed in Cloud Misconfiguration Thousands of domestic violence victims have had their emergency distress messages exposed after a developer misconfigured a back-end AWS bucket. Researchers at vpnMentor led by Noam...InfosecurityMag - Domestic Abuse Victims Exposed in Cloud Misconfiguration https://t.co/DbEXvl64oV [3]InfosecurityMag - Twitter - Jun 26 2020 08:30 [4]Domestic Abuse Victims Exposed in Cloud Misconfiguration https://www.infosecurity-magazine.com/news/domestic-abuse-victims-cloud?utm_source=twitterfeed&utm_medium=twitterBrazilian federal police investigates presidential data leak [5]ZDNet Security - Jun 26 2020 23:38 [6]Private information relating to Jair Bolsonaro and several ministers had been exposed and details of over 200,000 public servants obtained.This Week in Security News: XORDDoS and Kaiji Botnet Malware Variants Target Exposed Docker Servers and Ripple20 Vulnerabilities Could Impact Millions of IoT Devices [7]CERT-EU VulnerabilitiesApplications - Jun 26 2020 15:15 [8]. This Week in Security News: XORDDoS and Kaiji Botnet Malware Variants Target Exposed Docker Servers and Ripple20 Vulnerabilities Could Impact Millions of IoT Devices. Welcome to our weekly roundup, where we share what you need to know about the... Hacker Groups Tor2Mine is Back, Controls Mining Programs [9]Cyware - Jun 26 2020 13:24 [10]With an aim to control Monero mining activities by spreading trojans and other means, Tor2Mine, a cryptocurrency mining threat actor, makes a comeback after 2018. What’s going on? According to 360 Security Center, Tor2Mine is reducing the users to...Evil Corp blocked from deploying ransomware on US companies [11]TSecurity.de - Jun 26 2020 16:26 [12]The Evil Corp gang was blocked from deploying WastedLocker ransomware payloads in dozens of attacks against major US corporations, at least of them being Fortune 500 companies. [...]...Leviathan APT campaign in 2020 Malaysian political crisis [13]Reddit - BlueTeamSec - RSS - Jun 26 2020 06:22 [14]submitted by /u/digicat [link]...DarkCrewFriends Returns with Botnet Strategy [15]CERT-EU VulnerabilitiesApplications - Jun 26 2020 21:02 [16]The hackers-for-hire group DarkCrewFriends has resurfaced and is targeting content management systems to build a botnet. The botnet can be marshalled into service to carry out a variety of criminal activities, including distributed denial-of-service... Malware Glupteba malware leverages blockchain as a communications channel [17]SC Magazine US - Jun 26 2020 14:44 [18]Glupteba malware does something novel: It uses the bitcoin blockchain as a communications channel to receive updated configuration information. That’s important because malware always needs a way to go back to its home base, preferably without being...Lion gets breweries up and running following ransomware attack [19]ZDNet Security - Jun 26 2020 05:53 [20]But the beverage giant cannot confirm that data won't eventually make its way out into the wild, despite not finding any evidence of it being removed.Lucifer – New Self-Propagating Malware Exploit Multiple Critical Bugs to Infect Windows Devices [21]CERT-EU VulnerabilitiesApplications - Jun 27 2020 02:46 [22]Recently, the security experts have discovered a new self-propagating cryptojacking and DDoS-based malware “Lucifer” that are exploiting critical vulnerability to infect Windows devices. This vulnerability was discovered on May 29,2020, after... Vulnerabilities CVE-2020-15017 [23]CERT-EU VulnerabilitiesApplications - Jun 26 2020 20:02 [24]NeDi 1.9C is vulnerable to reflected cross-site scripting. The Devices-Config.php file improperly validates user input. An attacker can exploit this vulnerability by crafting arbitrary JavaScript in the sta GET parameter.SecurityWeek - NVIDIA Patches Code Execution Flaws in GPU Drivers https://t.co/7TKZ6E8xPP [25]SecurityWeek - Twitter - Jun 26 2020 12:52 [26]NVIDIA Patches Code Execution Flaws in GPU Drivers https://www.securityweek.com/nvidia-patches-code-execution-flaws-gpu-driversSecurity Flaws & Fixes - W/E - 6/26/20 [27]Tech-Wreck InfoSec Blog - Jun 26 2020 12:06 [28]AMD Fixes CPU Bug; Promises Patch for Additional Flaws by End of June (06/22/2020) Advanced Micro Devices (AMD) issued a security advisory regarding a high-severity vulnerability in software...NVIDIA Patches Code Execution Flaws in GPU Drivers [29]CERT-EU VulnerabilitiesApplications - Jun 26 2020 13:08 [30]NVIDIA this week released patches for a dozen vulnerabilities in GPU display drivers and vGPU software, including multiple issues that could lead to code execution. The most severe of the bugs affecting the GPU drivers include CVE‑2020‑5962, which... Ongoing Campaigns $200m Spear Phished from Cryptocurrency Exchanges [31]Infosecurity - Latest News - Jun 26 2020 14:46 [32]$200m Spear Phished from Cryptocurrency Exchanges A newly detected threat group has stolen an estimated minimum of $200m from cryptocurrency exchanges in just two years. The dastardly deeds of cyber-criminal organization CryptoCore...Payment Card Skimmer Attacks Hit 8 Cities [33]Bank Info Security - Jun 26 2020 20:34 [34]Trend Micro: 5 of the Cities Had Previously Been Victims of Magecart-Style Attacks (DougOlenick) • June 26, 2020 Eight U.S. cities recently had payment card data stolen via point-of-sale skimming malware on their Click2Gov online payment platforms,...Biggest PPS DDoS attack on European Bank [35]IT Security Guru - Jun 26 2020 12:05 [36]A European bank has fallen victim to a huge distributed denial-of-service (DDoS) attack that sent to its networking gear a flood of 809 million packets per second (PPS). This attack is potentially the largest one to have ever occurred with a... Although Silobreaker has relied on what it regards as reliable sources while compiling the content herein, Silobreaker cannot guarantee the accuracy, completeness, integrity or quality of such content and no responsibility is accepted by Silobreaker in respect of such content. Readers must determine for themselves what reliance they should place on the compiled content herein.
[1] https://www.infosecurity-magazine.com:443/news/domestic-abuse-victims-cloud/
[2] https://www.infosecurity-magazine.com:443/news/domestic-abuse-victims-cloud/
[3] https://twitter.com/InfosecurityMag/status/1276432643786244096
[4] https://twitter.com/InfosecurityMag/status/1276432643786244096
[5] https://www.zdnet.com/article/brazilian-federal-police-investigates-presidential-data-leak/#ftag=RSSbaffb68
[6] https://www.zdnet.com/article/brazilian-federal-police-investigates-presidential-data-leak/#ftag=RSSbaffb68
[7] https://blog.trendmicro.com/this-week-in-security-news-xorddos-and-kaiji-botnet-malware-variants-target-exposed-docker-servers-and-ripple20-vulnerabilities-could-impact-millions-of-iot-devices/
[8] https://blog.trendmicro.com/this-week-in-security-news-xorddos-and-kaiji-botnet-malware-variants-target-exposed-docker-servers-and-ripple20-vulnerabilities-could-impact-millions-of-iot-devices/
[9] https://cyware.com/news/tor2mine-is-back-controls-mining-programs-9cfcd257
[10] https://cyware.com/news/tor2mine-is-back-controls-mining-programs-9cfcd257
[11] https://tsecurity.de/de/1161520/IT-Security/Cyber-Security-Nachrichten/Evil-Corp-blocked-from-deploying-ransomware-on-US-companies/
[12] https://tsecurity.de/de/1161520/IT-Security/Cyber-Security-Nachrichten/Evil-Corp-blocked-from-deploying-ransomware-on-US-companies/
[13] https://www.reddit.com/r/blueteamsec/comments/hg2efp/leviathan_apt_campaign_in_2020_malaysian/
[14] https://www.reddit.com/r/blueteamsec/comments/hg2efp/leviathan_apt_campaign_in_2020_malaysian/
[15] https://threatpost.com/darkcrewfriends-returns-botnet/156963/
[16] https://threatpost.com/darkcrewfriends-returns-botnet/156963/
[17] https://www.scmagazine.com/home/security-news/glupteba-malware-leverages-blockchain-as-a-communications-channel/
[18] https://www.scmagazine.com/home/security-news/glupteba-malware-leverages-blockchain-as-a-communications-channel/
[19] https://www.zdnet.com/article/lion-gets-breweries-up-and-running-following-ransomware-attack/#ftag=RSSbaffb68
[20] https://www.zdnet.com/article/lion-gets-breweries-up-and-running-following-ransomware-attack/#ftag=RSSbaffb68
[21] https://gbhackers.com/lucifer/
[22] https://gbhackers.com/lucifer/
[23] https://infosec.cert-pa.it/cve-2020-15017.html
[24] https://infosec.cert-pa.it/cve-2020-15017.html
[25] https://twitter.com/SecurityWeek/status/1276498507600461825
[26] https://twitter.com/SecurityWeek/status/1276498507600461825
[27] https://tech-wreckblog.blogspot.com/2020/06/security-flaws-fixes-we-62620.html
[28] https://tech-wreckblog.blogspot.com/2020/06/security-flaws-fixes-we-62620.html
[29] https://www.securityweek.com/nvidia-patches-code-execution-flaws-gpu-drivers?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+Securityweek+%28SecurityWeek+RSS+Feed%29
[30] https://www.securityweek.com/nvidia-patches-code-execution-flaws-gpu-drivers?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+Securityweek+%28SecurityWeek+RSS+Feed%29
[31] https://www.infosecurity-magazine.com:443/news/200m-spear-phished-from/
[32] https://www.infosecurity-magazine.com:443/news/200m-spear-phished-from/
[33] https://www.bankinfosecurity.com/payment-card-skimmer-attacks-hit-8-cities-a-14512
[34] https://www.bankinfosecurity.com/payment-card-skimmer-attacks-hit-8-cities-a-14512
[35] https://www.itsecurityguru.org/2020/06/26/biggest-pps-ddos-attack-on-european-bank/?utm_source=rss&utm_medium=rss&utm_campaign=biggest-pps-ddos-attack-on-european-bank
[36] https://www.itsecurityguru.org/2020/06/26/biggest-pps-ddos-attack-on-european-bank/?utm_source=rss&utm_medium=rss&utm_campaign=biggest-pps-ddos-attack-on-european-bank
↧