Silobreaker Update 2021年11月26日
インターネット上でトレンドとなっている脅威アクター、マルウェアのランキングです。
Silobreaker の API を使用して作成しています。このページに関する説明はこちらをご覧ください。
Threat Actor
| Name | Move | Volume 1d | Volume 7d | Volume 30d |
|---|---|---|---|---|
| DEV-0365 |  |
1 | 1 | 1 |
| Equation Group | |
1 | 1 | 1 |
| Prince of Persia APT |  |
3 | 5 | 5 |
| Rampant Kitten | |
3 | 5 | 5 |
| Ferocious Kitten | |
3 | 5 | 5 |
Malware
| Name | Move | Volume 1d | Volume 7d | Volume 30d |
|---|---|---|---|---|
| ThreatNeedle | |
1 | 1 | 2 |
| Tardigrade Malware |  |
8 | 39 | 39 |
| PowerShortShell | |
5 | 11 | 11 |
| RATDispenser | |
5 | 18 | 18 |
| Smoke Bot | |
3 | 8 | 11 |
Related documents
- ThreatActor:DEV-0365
- Iranian threat actors exploit MS MSHTML bug to steal Google and Instagram credentials
- Published by Security Affairs (2021-11-25 21:32:42)
- Entities:
- Software:Microsoft Trident, Malware:PowerShortShell, Keyphrase:Threat Actor, Domain:dedyn.io, Keyphrase:Iranians
- ThreatActor:Equation Group
- cyb3rops – RT @inversecos: 1\ Threat Intelligence on 5eyes:
I know @lordx64 has posted about this previously – but the best resource for write-ups on… - Published by cyb3rops – Twitter (2021-11-25 08:33:13)
- Entities:
- Domain:antiy.cn, Subdomain:www.antiy.cn, Username:@inversecos, Username:@lordx64, ThreatActor:Equation Group
- ThreatActor:Prince of Persia APT
- Hackers exploit bugs in Microsoft MSHTML to steal Google, Instagram credits
- Published by ExBulletin (2021-11-25 11:46:00)
- Entities:
- Vulnerability:CVE-2021-40444, Keyphrase:Exploit, Software:Microsoft Trident, Company:Microsoft Corporation, Malware:PowerShortShell
- ThreatActor:Rampant Kitten
- Hackers exploit bugs in Microsoft MSHTML to steal Google, Instagram credits
- Published by ExBulletin (2021-11-25 11:46:00)
- Entities:
- Vulnerability:CVE-2021-40444, Keyphrase:Exploit, Software:Microsoft Trident, Company:Microsoft Corporation, Malware:PowerShortShell
- ThreatActor:Ferocious Kitten
- Hackers exploit bugs in Microsoft MSHTML to steal Google, Instagram credits
- Published by ExBulletin (2021-11-25 11:46:00)
- Entities:
- Vulnerability:CVE-2021-40444, Keyphrase:Exploit, Software:Microsoft Trident, Company:Microsoft Corporation, Malware:PowerShortShell
- Malware:ThreatNeedle
- Lazarus Hacking Group Set IT Supply Chain Attacks in Motion
- Published by LIFARS Blog (2021-11-25 14:01:03)
- Entities:
- AttackType:Supply Chain Attack, ThreatActor:Lazarus Group, Malware:BLINDINGCAN, Malware:MATA Malware, Keyphrase:APT Advanced Persistent Threat
- Malware:Tardigrade Malware
- Hackers target biomanufacturing facilities using the Tardigrade malware
- Published by TechRadar.com (2021-11-25 09:02:00)
- Entities:
- Malware:Tardigrade Malware, Company:Bioeconomy Information Sharing & Analysis Center, Keyphrase:Malware, Keyphrase:Computer Hacker, Keyphrase:Security Researcher
- Malware:PowerShortShell
- Hackers exploit bugs in Microsoft MSHTML to steal Google, Instagram credits
- Published by ExBulletin (2021-11-25 11:46:00)
- Entities:
- Vulnerability:CVE-2021-40444, Keyphrase:Exploit, Software:Microsoft Trident, Company:Microsoft Corporation, Malware:PowerShortShell
- Malware:RATDispenser
- RATDispenser: A Loader Spreading Eight Malware
- Published by Cyware (2021-11-25 14:12:00)
- Entities:
- Malware:RATDispenser, Keyphrase:Malware, Keyphrase:Malware Loader, Keyphrase:Malware as a Service, Software:VBScript
- Malware:Smoke Bot
- Hackers use tardigrade malware to target bio-manufacturing facilities
- Published by Fuentitech (2021-11-25 10:29:00)
- Entities:
- Malware:Tardigrade Malware, Keyphrase:Malware, Keyphrase:Tardigrade, Keyphrase:Computer Hacker, Keyphrase:Security Researcher
