Silobreaker Update 2021年12月01日
インターネット上でトレンドとなっている脅威アクター、マルウェアのランキングです。
Silobreaker の API を使用して作成しています。このページに関する説明はこちらをご覧ください。
Threat Actor
Name | Move | Volume 1d | Volume 7d | Volume 30d |
---|---|---|---|---|
WIRTE | ![]() |
4 | 4 | 4 |
Gaza Cybergang | ![]() |
1 | 1 | 1 |
The Community | ![]() |
6 | 6 | 12 |
UNC2190 | ![]() |
3 | 6 | 6 |
APT37 | ![]() |
10 | 31 | 47 |
Malware
Name | Move | Volume 1d | Volume 7d | Volume 30d |
---|---|---|---|---|
Yanluowang Ransomware | ![]() |
9 | 9 | 9 |
Cryptbot | ![]() |
2 | 2 | 2 |
Brunhilda Dropper | ![]() |
2 | 2 | 2 |
Sabbath Ransomware | ![]() |
7 | 12 | 12 |
Rook Ransomware | ![]() |
3 | 6 | 6 |
Related documents
- ThreatActor:WIRTE
- WIRTE Hacker Group Targets Government, Law, Financial Entities in Middle East
- Published by The Hacker News – RSS (2021-11-30 17:31:27)
- Entities:
- ThreatActor:WIRTE, Keyphrase:Hacker Group, WorldRegion:Middle East, Keyphrase:Financial, Keyphrase:Law
- ThreatActor:Gaza Cybergang
- WIRTE APT group targets the Middle East since at least 2019
- Published by Security Affairs (2021-11-30 22:57:00)
- Entities:
- ThreatActor:WIRTE, Keyphrase:C2 Command & Control, ThreatActor:Gaza Cybergang, AttackType:Living-off-the-Land, Keyphrase:APT Advanced Persistent Threat
- ThreatActor:The Community
- Member of group connected to multi-million-dollar cryptocurrency theft sentenced
- Published by The Record by Recorded Future (2021-12-01 05:37:22)
- Entities:
- Keyphrase:Cryptocurrency, Keyphrase:Stolen, ThreatActor:The Community, GovernmentBody:US Department of Justice, Keyphrase:Telecommunications
- ThreatActor:UNC2190
- Ransomware group continually rebrands to slip under the radar
- Published by DataBreaches.net (2021-11-30 22:54:03)
- Entities:
- Keyphrase:Ransomware, Keyphrase:Radar, ThreatActor:UNC2190, Malware:Sabbath Ransomware, Company:Mandiant Corp
- ThreatActor:APT37
- EduardKovacs – Kaspersky has analyzed a new espionage campaign conducted by the threat actor named ScarCruft, and the security fir… https://t.co/bkxTvIqz9Z
- Published by EduardKovacs – Twitter (2021-11-30 21:44:00)
- Entities:
- ThreatActor:APT37, Username:@eduardkovacs, Company:Kaspersky Lab, Keyphrase:Threat Actor, Incident:Espionage
- Malware:Yanluowang Ransomware
- Yanluowang: Further Insights on New Ransomware Threat
- Published by Symantec Enterprise Blogs – Threat Intelligence (2021-11-30 20:39:53)
- Entities:
- Malware:Yanluowang Ransomware, Keyphrase:Ransomware, Keyphrase:Threat
- Malware:Cryptbot
- Anomali Cyber Watch: Web Skimmers Victimize Holiday Shoppers, Tardigrade Targets Vaccine Manufacturers, Babadeda Crypter Targets Crypto Community, and More
- Published by Anomali – Blog – RSS (2021-12-01 02:09:00)
- Entities:
- Keyphrase:MITRE ATT&CK Framework, Malware:Babadeda, Malware:CronRAT, Malware:Tardigrade Malware, AttackType:Card Skimming
- Malware:Brunhilda Dropper
- Over 300,000 Users Affected by 4 Android Banking Trojans
- Published by CISO MAG – Cyber Security Magazine (2021-11-30 23:38:56)
- Entities:
- AttackType:Banking Trojan, AttackType:Trojan Horse, Malware:TeaBot, Keyphrase:Android, Malware:Cynos Android Malware
- Malware:Sabbath Ransomware
- Sabbath ransomware group rebrands, continues attacks
- Published by SecurityBrief – Europe – RSS (2021-12-01 02:01:00)
- Entities:
- Malware:Sabbath Ransomware, Incident:Attack, Company:Mandiant Corp, Keyphrase:Ransomware, Keyphrase:Launching
- Malware:Rook Ransomware
- darktracer_int – ROOK, a new ransomware gang, has opened a leak site on the darkweb. 1 victim is listed on the victim list. https://t.co/Ot1EfplfRY
- Published by darktracer_int – Twitter (2021-11-30 13:20:45)
- Entities:
- Username:@darktracer_int, Keyphrase:Dark Web, Keyphrase:Victim, Keyphrase:Ransomware, Keyphrase:Leak