Silobreaker Update 2021年09月17日
インターネット上でトレンドとなっている脅威アクター、マルウェアのランキングです。
Silobreaker の API を使用して作成しています。このページに関する説明はこちらをご覧ください。
Threat Actor
| Name | Move | Volume 1d | Volume 7d | Volume 30d |
|---|---|---|---|---|
| DEV-0365 |  |
7 | 7 | 7 |
| DEV-0413 | |
6 | 6 | 6 |
| Wicked Spider |  |
1 | 1 | 1 |
| UNC1878 |  |
10 | 10 | 11 |
| Pay or Grief |  |
1 | 2 | 2 |
Malware
| Name | Move | Volume 1d | Volume 7d | Volume 30d |
|---|---|---|---|---|
| Juicy Potato | |
2 | 2 | 2 |
| BazarLoader |  |
17 | 22 | 56 |
| Cobalt Strike Beacon | |
17 | 53 | 77 |
| Grief Ransomware | |
4 | 6 | 10 |
| GandCrab Ransomware | |
4 | 8 | 17 |
Related documents
- ThreatActor:DEV-0365
- Analyzing attacks that exploit the CVE-2021-40444 MSHTML vulnerability
- Published by Microsoft – Security Blog – RSS (2021-09-16 08:40:56)
- Entities:
- Vulnerability:CVE-2021-40444, ThreatActor:DEV-0413, Company:Microsoft Corporation, ThreatActor:DEV-0365, Company:Microsoft Threat Intelligence Center
- ThreatActor:DEV-0413
- Analyzing attacks that exploit the CVE-2021-40444 MSHTML vulnerability
- Published by Microsoft – Security Blog – RSS (2021-09-16 08:40:56)
- Entities:
- Vulnerability:CVE-2021-40444, ThreatActor:DEV-0413, Company:Microsoft Corporation, ThreatActor:DEV-0365, Company:Microsoft Threat Intelligence Center
- ThreatActor:Wicked Spider
- McAfee Finds Years-Long Attack by Chinese-Linked APT Groups
- Published by eSecurityPlanet (2021-09-17 05:20:53)
- Entities:
- Company:McAfee Inc, Keyphrase:APT Advanced Persistent Threat, Keyphrase:Connected to China, ThreatActor:APT27, Incident:Attack
- ThreatActor:UNC1878
- Microsoft warns about manipulated office documents
- Published by Press From (2021-09-16 23:51:00)
- Entities:
- Company:Microsoft Corporation, ThreatActor:UNC1878, Incident:Attack, Vulnerability:CVE-2021-40444, Malware:BazarLoader
- ThreatActor:Pay or Grief
- Ransomware gang threatens to remove key when victim contacts negotiator
- Published by London News Time (2021-09-16 21:30:00)
- Entities:
- Keyphrase:Ransomware, Keyphrase:Victim, Keyphrase:Decryption, UrlFull:pic.twitter.com/31Vsup3ioB, AttackType:Data Theft
- Malware:Juicy Potato
- Active Directory cheatsheet: part 2
- Published by InfoSec Bug Bounty Write-ups – RSS (2021-09-16 21:22:12)
- Entities:
- Software:Mimikatz, HashTag:#enumerate, Software:Windows Powershell, HashTag:#dump, HashTag:#get
- Malware:BazarLoader
- What you need to know about the BazarLoader Malware?
- Published by Quick Heal Blog (2021-09-16 17:49:41)
- Entities:
- Malware:BazarLoader, Keyphrase:Malware, Keyphrase:Need-to-Know, Company:Quick Heal Technologies Pvt Ltd, Keyphrase:Computer Security
- Malware:Cobalt Strike Beacon
- Windows MSHTML 0-Day Exploited to Deploy Cobalt Strike Beacon in Targeted Attacks
- Published by The Hacker News – RSS (2021-09-16 16:19:46)
- Entities:
- Malware:Cobalt Strike Beacon, Software:Microsoft Trident, Keyphrase:Zero-Day, Software:Microsoft Windows, Keyphrase:Exploit
- Malware:Grief Ransomware
- Daily Summary Cyberattacks 16 September
- Published by S21sec (2021-09-16 19:11:15)
- Entities:
- Malware:Grief Ransomware, Keyphrase:Cyber Attack, Keyphrase:Decryption, Keyphrase:Ransomware, ThreatActor:Evil Corp
- Malware:GandCrab Ransomware
- Universal decryptor released for past REvil ransomware victims
- Published by Record by Recorded Future (2021-09-16 22:52:00)
- Entities:
- Malware:REvil Ransomware, Company:Bitdefender, ThreatActor:REvil Ransomware Gang, Keyphrase:Law Enforcement, Keyphrase:Release
