Silobreaker Update 2021年08月02日
インターネット上でトレンドとなっている脅威アクター、マルウェアのランキングです。
Silobreaker の API を使用して作成しています。このページに関する説明はこちらをご覧ください。
Threat Actor
| Name | Move | Volume 1d | Volume 7d | Volume 30d |
|---|---|---|---|---|
| Lunar Spider |  |
1 | 1 | 1 |
| Sprite Spider | |
1 | 1 | 1 |
| FIN8 |  |
1 | 2 | 2 |
| Wizard Spider |  |
12 | 15 | 42 |
| Scattered Canary | |
1 | 3 | 3 |
Malware
| Name | Move | Volume 1d | Volume 7d | Volume 30d |
|---|---|---|---|---|
| Feodo Trojan | |
1 | 1 | 1 |
| WellMail | |
3 | 10 | 10 |
| Prometheus Ransomware | |
1 | 1 | 3 |
| Sigma Ransomware | |
1 | 1 | 5 |
| SamSam Ransomware |  |
3 | 14 | 19 |
Related documents
- ThreatActor:Lunar Spider
- InfosecNewsBot – RT @nigroeneveld: AlienVault OTX – Wizard Spider is reportedly associated with Grim Spider and Lunar Spider. The WIZARD SPIDER threat group…
- Published by InfosecNewsBot – Twitter (2021-08-02 03:15:26)
- Entities:
- ThreatActor:Wizard Spider, Product:AlienVault OTX, ThreatActor:Lunar Spider, Username:@nigroeneveld, Username:@infosecnewsbot
- ThreatActor:Sprite Spider
- InfosecNewsBot – RT @nigroeneveld: Sprite Spider emerging as one of the most destructive ransomware threat actors https://t.co/m2pRWNx6YT
- Published by InfosecNewsBot – Twitter (2021-08-02 00:18:58)
- Entities:
- ThreatActor:Sprite Spider, Username:@nigroeneveld, Username:@infosecnewsbot, Keyphrase:Threat Actor, UrlFull:https://www.csoonline.com/article/3604599/sprite-spider-emerging-as-one-of-the-most-destructive-ransomware-threat-actors.html
- ThreatActor:FIN8
- InfosecNewsBot – RT @nigroeneveld: Deep dive into a FIN8 attack – A forensic investigation https://t.co/P14ar7tN9n
- Published by InfosecNewsBot – Twitter (2021-08-01 22:29:50)
- Entities:
- ThreatActor:FIN8, Username:@nigroeneveld, Username:@infosecnewsbot, Keyphrase:Forensics, Subdomain:businessinsights.bitdefender.com
- ThreatActor:Wizard Spider
- InfosecNewsBot – RT @nigroeneveld: Wizard Spider Threat Group – Threat Group Cards: A Threat Actor Encyclopedia https://t.co/Lml9REtrLf
- Published by InfosecNewsBot – Twitter (2021-08-02 00:17:54)
- Entities:
- Keyphrase:Hacker Group, Username:@nigroeneveld, ThreatActor:Wizard Spider, Username:@infosecnewsbot, Keyphrase:Threat Actor
- ThreatActor:Scattered Canary
- Massive fraud rocks state unemployment system
- Published by The Oklahoman (2021-08-01 22:16:00)
- Entities:
- Keyphrase:Unemployment, Keyphrase:Fraud, Province:State of Oklahoma, Keyphrase:Stolen, Person:Gary Jones
- Malware:Feodo Trojan
- BazarCall to Conti Ransomware via Trickbot and Cobalt Strike
- Published by The DFIR Report – Blog (2021-08-02 07:47:29)
- Entities:
- Domain:github.com, Malware:Trickbot Malware, Software:Cobalt Strike, Software:Windows Powershell, Keyphrase:C2 Command & Control
- Malware:WellMail
- Russia’s APT29 is Actively Serving WellMess/WellMail Malware
- Published by E Hacking News (2021-08-01 21:43:00)
- Entities:
- ThreatActor:APT29, Malware:WellMess, Malware:WellMail, Company:RiskIQ, Country:Russia
- Malware:Prometheus Ransomware
- Decryptor released for Prometheus ransomware victims
- Published by The Record by Recorded Future (2021-08-02 01:55:18)
- Entities:
- Malware:Prometheus Ransomware, ThreatActor:Prometheus, Keyphrase:Decryption, Keyphrase:Release, Malware:Haron Ransomware
- Malware:Sigma Ransomware
- BazarCall to Conti Ransomware via Trickbot and Cobalt Strike
- Published by The DFIR Report – Blog (2021-08-02 07:47:29)
- Entities:
- Domain:github.com, Malware:Trickbot Malware, Software:Cobalt Strike, Software:Windows Powershell, Keyphrase:C2 Command & Control
- Malware:SamSam Ransomware
- Ransomware attacks hit record 300 mn in 1st half of 2021: Report
- Published by SocialNews.xyz (2021-08-01 16:37:00)
- Entities:
- Keyphrase:Ransomware, Company:SonicWall Inc, Malware:SamSam Ransomware, Company:Boundless Corporation, Malware:Cerber Ransomware
