Silobreaker Update 2021年11月19日
インターネット上でトレンドとなっている脅威アクター、マルウェアのランキングです。
Silobreaker の API を使用して作成しています。このページに関する説明はこちらをご覧ください。
Threat Actor
| Name | Move | Volume 1d | Volume 7d | Volume 30d |
|---|---|---|---|---|
| RedCurl |  |
16 | 16 | 16 |
| Konni Group |  |
3 | 3 | 3 |
| Scattered Canary | |
2 | 2 | 2 |
| APT41 |  |
9 | 19 | 23 |
| Winnti Group | |
4 | 6 | 10 |
Malware
| Name | Move | Volume 1d | Volume 7d | Volume 30d |
|---|---|---|---|---|
| Kimsuky Malware |  |
3 | 3 | 4 |
| Procdump |  |
5 | 7 | 8 |
| Sigma Ransomware | |
3 | 4 | 5 |
| NukeSped | |
3 | 5 | 6 |
| WOLF Ransomware | |
7 | 11 | 31 |
Related documents
- ThreatActor:RedCurl
- RedCurl hacking group returns with new attacks
- Published by Group-IB – News – RSS (2021-11-18 20:25:33)
- Entities:
- ThreatActor:RedCurl, Keyphrase:Hacker Group, Incident:Attack
- ThreatActor:Konni Group
- North Korean cybercriminal group ‘TA406’ escalates attacks through 2021
- Published by SiliconANGLE (2021-11-18 19:00:09)
- Entities:
- Country:North Korea, Keyphrase:Escalation, Keyphrase:Cybercrime, Incident:Attack, Keyphrase:Threat Actor
- ThreatActor:Scattered Canary
- To the Black Axe: #GardaWillGetYou
- Published by CyberCrime & Doing Time (2021-11-18 21:16:38)
- Entities:
- ViolentGroup:Black Axe, HashTag:#GardaWillGetYou, Country:Ireland, AttackType:Email Phishing, Person:Kieran Crowley
- ThreatActor:APT41
- China’s APT41 Manages Library of Breached Certificates
- Published by Information Security Today (2021-11-18 22:00:00)
- Entities:
- ThreatActor:APT41, Company:Venafi Inc, Incident:Attack, Keyphrase:Breach, Keyphrase:Cyber Espionage
- ThreatActor:Winnti Group
- Beware the Chinese Ransomware Attack With No Ransom
- Published by Bloomberg (2021-11-18 08:00:33)
- Entities:
- Keyphrase:Ransom, Keyphrase:Ransomware, Keyphrase:Chinese, Company:Powertech Technology Incorporated, Company:Formosa Petrochemical Corp
- Malware:Kimsuky Malware
- Previously unreported North Korean espionage part of busy 2021 for country’s hackers
- Published by Information Security Today (2021-11-18 19:00:03)
- Entities:
- Country:North Korea, Incident:Espionage, Malware:Kimsuky Malware, Keyphrase:Hacker, Company:Proofpoint Inc
- Malware:Procdump
- Iranian targeting of IT sector on the rise
- Published by Microsoft Security Blog (2021-11-19 01:00:37)
- Entities:
- Keyphrase:Iranians, Company:Microsoft Threat Intelligence Center, Keyphrase:Compromise, Software:Microsoft Windows, Keyphrase:IT Sector
- Malware:Sigma Ransomware
- Ransomware Threats Affecting the Public Sector
- Published by McAfee Blogs (2021-11-19 02:03:00)
- Entities:
- Company:McAfee Inc, Keyphrase:Threat, Keyphrase:Threat Intelligence, Keyphrase:Enterprise, Keyphrase:Public Sector
- Malware:NukeSped
- hackerfantastic – RT @vxunderground: We’ve made some updates to vx-underground:
APT Papers + Samples added
-2021.11.10 Lazarus Nukesped
-2021.11.17 Alert (A… - Published by hackerfantastic – Twitter (2021-11-19 04:45:10)
- Entities:
- UrlFull:https://conti.vx-underground.org, UrlFull:https://vx-underground.org/apts, Domain:vx-underground.org, Subdomain:conti.vx-underground.org, UrlFull:https://twitter.com/vxunderground/status/1461405111113195524/photo/1
- Malware:WOLF Ransomware
- Israeli defense minister’s cleaner accused of espionage
- Published by RT – World News – RSS (2021-11-18 23:44:55)
- Entities:
- Incident:Espionage, Keyphrase:Minister of Defense, Keyphrase:Israeli, Person:Benny Gantz, Organization:Shin Bet
