Silobreaker Update 2021年10月05日
インターネット上でトレンドとなっている脅威アクター、マルウェアのランキングです。
Silobreaker の API を使用して作成しています。このページに関する説明はこちらをご覧ください。
Threat Actor
| Name | Move | Volume 1d | Volume 7d | Volume 30d |
|---|---|---|---|---|
| TA2101 |  |
2 | 2 | 2 |
| BlackTech APT |  |
5 | 6 | 8 |
| The Lamberts | |
2 | 3 | 3 |
| ChamelGang |  |
6 | 21 | 21 |
| Popopret | |
1 | 1 | 3 |
Malware
| Name | Move | Volume 1d | Volume 7d | Volume 30d |
|---|---|---|---|---|
| Cuba Ransomware | |
3 | 3 | 3 |
| Alkhal Ransomware |  |
15 | 16 | 16 |
| AtomSilo Ransomware | |
13 | 13 | 18 |
| Gh0stTimes | |
5 | 6 | 6 |
| Clop Ransomware | |
6 | 8 | 28 |
Related documents
- ThreatActor:TA2101
- AvosLocker ransomware gang to auction the data of victims who don’t pay
- Published by Record by Recorded Future (2021-10-05 05:52:00)
- Entities:
- Malware:AvosLocker Ransomware, Keyphrase:Ransomware, Incident:Attack, Keyphrase:Computer Hacker, ThreatActor:TA2101
- ThreatActor:BlackTech APT
- jpcert_en – New Blog Post: Malware Gh0stTimes Used by BlackTech ^YU https://t.co/Pj9tqEmSXS
- Published by jpcert_en – Twitter (2021-10-04 14:04:26)
- Entities:
- Malware:Gh0stTimes, Username:@jpcert_en, ThreatActor:BlackTech APT, Keyphrase:Malware, Subdomain:blogs.jpcert.or.jp
- ThreatActor:The Lamberts
- runasand – Interesting bit about The Lamberts: at least one of their tools is referenced as “friendly” in Territorial Dispute… https://t.co/XNUKFXurH4
- Published by runasand – Twitter (2021-10-04 23:16:33)
- Entities:
- Product:Territorial Dispute Tool, ThreatActor:The Lamberts, HashTag:#Vault7, HashTag:#OBTS, Keyphrase:Target System
- ThreatActor:ChamelGang
- New APT ChamelGang Targets energy and aviation companies in Russia
- Published by Security Affairs (2021-10-04 20:22:45)
- Entities:
- ThreatActor:ChamelGang, Incident:Attack, Malware:DoorMe, Keyphrase:ProxyShell, Keyphrase:Compromise
- ThreatActor:Popopret
- p0p0pr3t – RT @CyberWarship: Azure-Red-Team: Azure Security Resources and Notes
#infosec #pentest #redteam
https://t.co/8X72QVPkOH https://t.co/StmAR… - Published by p0p0pr3t – Twitter (2021-10-04 20:56:07)
- Entities:
- UrlFull:https://github.com/rootsecdev/Azure-Red-Team, Username:@p0p0pr3t, Username:@CyberWarship, HashTag:#redteam, HashTag:#pentest
- Malware:Cuba Ransomware
- McAfee Enterprise Advanced Threat Research Report: Ransomware’s Increasing Prevalence
- Published by HS Today (2021-10-05 06:24:00)
- Entities:
- Keyphrase:Ransomware, Company:McAfee Inc, Malware:REvil Ransomware, Keyphrase:Enterprise, ThreatActor:DarkSide Hacking Group
- Malware:Alkhal Ransomware
- New File-Locking Malware With No Known Decryptor Found
- Published by InfoRiskToday.com (2021-10-05 07:24:50)
- Entities:
- Malware:Alkhal Ransomware, Keyphrase:Decryption, Keyphrase:Malware, Keyphrase:Ransomware, Organization:Security Council of India
- Malware:AtomSilo Ransomware
- New Atom Silo Ransomware Group Targets Confluence Servers
- Published by Dark Reading (2021-10-05 04:59:00)
- Entities:
- Malware:AtomSilo Ransomware, Incident:Attack, Keyphrase:Servers, Keyphrase:Dynamic Link Library, Keyphrase:Ransomware
- Malware:Gh0stTimes
- jpcert_en – New Blog Post: Malware Gh0stTimes Used by BlackTech ^YU https://t.co/Pj9tqEmSXS
- Published by jpcert_en – Twitter (2021-10-04 14:04:26)
- Entities:
- Malware:Gh0stTimes, Username:@jpcert_en, ThreatActor:BlackTech APT, Keyphrase:Malware, Subdomain:blogs.jpcert.or.jp
- Malware:Clop Ransomware
- Police Arrest Men Involved in Ransomware Gang That Allegedly Hacked ‘More Than 100’ Companies
- Published by Gizmodo (2021-10-05 00:55:00)
- Entities:
- Keyphrase:Ransomware, Keyphrase:Police, Keyphrase:Hacked, Keyphrase:Imprisonment and Detention, Organization:Europol
