Silobreaker Update 2021年03月16日
インターネット上でトレンドとなっている脅威アクター、マルウェアのランキングです。
Silobreaker の API を使用して作成しています。このページに関する説明はこちらをご覧ください。
Threat Actor
| Name | Move | Volume 1d | Volume 7d | Volume 30d |
|---|---|---|---|---|
| APT26 |  |
2 | 2 | 2 |
| Black Shadow Team |  |
2 | 5 | 5 |
| DLTMiner |  |
8 | 39 | 41 |
| APT27 | |
8 | 56 | 71 |
| Calypso APT | |
5 | 42 | 45 |
Malware
| Name | Move | Volume 1d | Volume 7d | Volume 30d |
|---|---|---|---|---|
| China Chopper | |
25 | 52 | 84 |
| ZHtrap | |
6 | 15 | 15 |
| Chopper ASPX Web Shell | |
3 | 11 | 13 |
| DearCry Ransomware | |
50 | 315 | 315 |
| NotPetya Ransomware | |
10 | 25 | 147 |
Related documents
- ThreatActor:APT26
- Like Microsoft’s devastating hacking in China, we’re all at risk
- Published by NewsUS.app (2021-03-15 18:24:00)
- Entities:
- ThreatActor:Hafnium Group, Keyphrase:Computer Hacking, Product:Microsoft Exchange Server Enterprise, Company:Microsoft Corporation, Country:China
- ThreatActor:Black Shadow Team
- Hackers who attacked KLS leaked credit cards of Israeli citizens – Walla! TECH
- Published by The Limited Times (2021-03-15 17:25:00)
- Entities:
- Keyphrase:Computer Hacker, ThreatActor:Black Shadow Team, Keyphrase:Credit Card, Company:Walla!, Keyphrase:Citizen
- ThreatActor:DLTMiner
- Shadowserver – A breakdown of DLTMiner cryptominer infections as a result of MS Exchange breaches. On 2021-03-14 we observed at le… https://t.co/xKIlobkTBM
- Published by Shadowserver – Twitter (2021-03-15 18:45:43)
- Entities:
- ThreatActor:DLTMiner, Username:@shadowserver, Product:Microsoft Exchange Server Enterprise, Keyphrase:Cryptomining, Keyphrase:HyperText Transfer Protocol
- ThreatActor:APT27
- Mandiant – What have APT41 and APT27 been up to lately?
Find out in @snozberries_au and @thall_sec’s virtual talk at the 2021… https://t.co/GXhGIE49n1 - Published by Mandiant – Twitter (2021-03-15 10:00:06)
- Entities:
- Username:@snozberries_au, UrlFull:https://feye.io/3eopSU3, Username:@thall_sec, ThreatActor:APT27, Username:@mandiant
- ThreatActor:Calypso APT
- How Did Threat Actors Know About Exchange Vulnerabilities Before Disclosure?
- Published by Breaking Defense (2021-03-16 06:40:58)
- Entities:
- Keyphrase:Threat Actor, Keyphrase:ProxyLogon, Company:Microsoft Corporation, Keyphrase:Zero-Day, Company:ESET
- Malware:China Chopper
- 「Exchange Server」攻撃で悪用された「China Chopper」の解析情報
- Published by Security NEXT – RSS (2021-03-15 09:13:32)
- Entities:
- Malware:China Chopper, Product:Microsoft Exchange Server Enterprise
- Malware:ZHtrap
- ZHtrap Botnet Malware Deploys Honeypots in the Search for More Targets
- Published by Heimdal Security Blog (2021-03-16 00:10:33)
- Entities:
- Malware:ZHtrap, Keyphrase:Botnet, Keyphrase:Malware, Keyphrase:Infectious, Product:Heimdal Security
- Malware:Chopper ASPX Web Shell
- LouiseMensch – RT @780thC: In the interest of providing more information to the security community during this time, we decided to dig even deeper into h…
- Published by LouiseMensch – Twitter (2021-03-16 03:41:28)
- Entities:
- Malware:Chopper ASPX Web Shell, Username:@trustwave, Malware:China Chopper, Username:@louisemensch, UrlFull:http://asp.net
- Malware:DearCry Ransomware
- Steps to Defend Against DearCry Ransomware
- Published by Fortinet – Blog – Industry Trends – RSS (2021-03-15 16:00:00)
- Entities:
- Malware:DearCry Ransomware, Company:FortiGuard Labs, Company:Fortinet Inc, Keyphrase:Cyber Threat, Keyphrase:Threat
- Malware:NotPetya Ransomware
- pwnallthethings – 7. Had worst-case scenarios removed from reports by clients as “Tom Clancy bullshit”. That particular scenario play… https://t.co/iS8Kd7tm1m
- Published by pwnallthethings – Twitter (2021-03-16 01:43:50)
- Entities:
- Person:Tom Clancy, Malware:NotPetya Ransomware, Username:@pwnallthethings, Keyphrase:Pwned
