Silobreaker Update 2021年06月24日
インターネット上でトレンドとなっている脅威アクター、マルウェアのランキングです。
Silobreaker の API を使用して作成しています。このページに関する説明はこちらをご覧ください。
Threat Actor
| Name | Move | Volume 1d | Volume 7d | Volume 30d |
|---|---|---|---|---|
| Higaisa |  |
2 | 2 | 2 |
| TA511 | |
1 | 1 | 1 |
| Cron Crime Ring | |
1 | 1 | 1 |
| Yalishanda | |
1 | 1 | 1 |
| GOLD NORTHFIELD |  |
3 | 4 | 4 |
Malware
| Name | Move | Volume 1d | Volume 7d | Volume 30d |
|---|---|---|---|---|
| Maratlib | |
3 | 3 | 3 |
| ReverseRat | |
13 | 17 | 17 |
| LV Ransomware | |
5 | 6 | 6 |
| PYSA Ransomware |  |
6 | 6 | 10 |
| LokiBot Trojan | |
5 | 7 | 9 |
Related documents
- ThreatActor:Higaisa
- MITRE introduces D3FEND framework
- Published by Malwarebytes Labs Blog (2021-06-24 01:51:28)
- Entities:
- Company:The MITRE Corporation, Keyphrase:MITRE ATT&CK Framework, GovernmentBody:NSA US National Security Agency, ThreatActor:Higaisa, Keyphrase:Attack Vector
- ThreatActor:TA511
- This is how the Cobalt Strike penetration testing tool is being abused by cybercriminals
- Published by Zephyrnet.com (2021-06-23 13:56:00)
- Entities:
- Software:Cobalt Strike, Malware:Hancitor, Keyphrase:Penetration Testing, Keyphrase:Abuse, Company:Intel 471
- ThreatActor:Cron Crime Ring
- Maine towns are vulnerable to worsening attacks by cybercriminals, experts say
- Published by Bangor Daily News (2021-06-23 19:39:00)
- Entities:
- Keyphrase:Computer Hacker, Province:State of Maine, Incident:Cybercrime, Keyphrase:Cyber Security, Incident:Attack
- ThreatActor:Yalishanda
- This is how the Cobalt Strike penetration testing tool is being abused by cybercriminals
- Published by Zephyrnet.com (2021-06-23 13:56:00)
- Entities:
- Software:Cobalt Strike, Malware:Hancitor, Keyphrase:Penetration Testing, Keyphrase:Abuse, Company:Intel 471
- ThreatActor:GOLD NORTHFIELD
- Sure looks like someone’s pirating the REvil ransomware, tweaking the binary in a hex editor for their own crimes
- Published by The Register (2021-06-23 09:08:00)
- Entities:
- Malware:Sodinokibi Ransomware, ThreatActor:GOLD NORTHFIELD, Company:Dell SecureWorks Inc, Keyphrase:Ransomware, ThreatActor:Pinchy Spider
- Malware:Maratlib
- Ahoy, there’s malice in your repos—PyPI is the latest to be abused
- Published by ArsTechnica (2021-06-23 21:38:42)
- Entities:
- Product:Python Package Index, Keyphrase:Abuse, Malware:Maratlib, Keyphrase:Crypto Mining, Company:Sonatype Inc
- Malware:ReverseRat
- Pakistan-linked hackers targeted Indian power company with ReverseRat
- Published by GIXTools (2021-06-24 00:00:00)
- Entities:
- Malware:ReverseRat, Keyphrase:Hacker, Keyphrase:Indian, Keyphrase:Compromise, Keyphrase:RAT Remote Access Trojan
- Malware:LV Ransomware
- LV ransomware operators repurposed a REvil binary to launch a new RaaS
- Published by Security Affairs (2021-06-24 04:09:03)
- Entities:
- Malware:Sodinokibi Ransomware, Malware:LV Ransomware, Keyphrase:Ransomware-as-a-Service, ThreatActor:GOLD NORTHFIELD, Keyphrase:Hash
- Malware:PYSA Ransomware
- PYSA ransomware backdoors education orgs using ChaChi malware
- Published by Bleeping Computer (2021-06-23 22:12:00)
- Entities:
- Malware:PYSA Ransomware, Keyphrase:RAT Remote Access Trojan, AttackType:Backdoor, Keyphrase:Education, Keyphrase:Ransomware
- Malware:LokiBot Trojan
- DynamicAnalysis – @symbiotics @iamkateherron @LokiOfficial Loki is part of Norse culture. She doesn’t get to redefine Loki.
- Published by DynamicAnalysis – Twitter (2021-06-24 00:59:50)
- Entities:
- Malware:LokiBot Trojan, Username:@iamkateherron, Username:@lokiofficial, Username:@DynamicAnalysis, Keyphrase:Malware
