Silobreaker Update 2021年12月03日
インターネット上でトレンドとなっている脅威アクター、マルウェアのランキングです。
Silobreaker の API を使用して作成しています。このページに関する説明はこちらをご覧ください。
Threat Actor
| Name | Move | Volume 1d | Volume 7d | Volume 30d |
|---|---|---|---|---|
| SideWinder APT |  |
2 | 2 | 2 |
| Tor2Mine | |
2 | 2 | 2 |
| The Impact Team | |
1 | 1 | 1 |
| APT36 |  |
2 | 2 | 3 |
| BlackTech APT | |
2 | 3 | 4 |
Malware
| Name | Move | Volume 1d | Volume 7d | Volume 30d |
|---|---|---|---|---|
| AllaKore | |
2 | 2 | 3 |
| BoomBox Malware |  |
4 | 5 | 10 |
| NativeZone | |
4 | 5 | 10 |
| EnvyScout | |
4 | 5 | 10 |
| VaporRage | |
4 | 5 | 10 |
Related documents
- ThreatActor:SideWinder APT
- SideCopy APT: Connecting lures to victims, payloads to infrastructure
- Published by Malwarebytes Unpacked (2021-12-03 01:00:00)
- Entities:
- ThreatActor:SideCopy, Keyphrase:Payload, Keyphrase:Exfiltration, Keyphrase:Trojanized, Keyphrase:Decoy
- ThreatActor:Tor2Mine
- SophosLabs – Tor2Mine, like many other miners in recent cases, is almost always a sign of vulnerability to other, potentially mo… https://t.co/jUqMN1IJCe
- Published by SophosLabs – Twitter (2021-12-02 22:25:22)
- Entities:
- ThreatActor:Tor2Mine, Username:@sophoslabs, Incident:Intrusion, Keyphrase:Vulnerability, Company:Sophos Inc
- ThreatActor:The Impact Team
- ilooda’s 2021 Billboard Advertisement Drew Asia’s Attention
- Published by Sannioportale.it (2021-12-02 17:51:59)
- Entities:
- Person:Peng Liyuan, Continent:Asia, ThreatActor:The Impact Team, Company:Lotteria, Keyphrase:Open
- ThreatActor:APT36
- SideCopy APT: Connecting lures to victims, payloads to infrastructure
- Published by Malwarebytes Unpacked (2021-12-03 01:00:00)
- Entities:
- ThreatActor:SideCopy, Keyphrase:Payload, Keyphrase:Exfiltration, Keyphrase:Trojanized, Keyphrase:Decoy
- ThreatActor:BlackTech APT
- 东亚黑客组织 BlackTech 针对金融、教育等行业展开攻 – Chinese reporting – East Asian hacker organization BlackTech launched attacks on finance, education and other industries – uses implants such as Plead, TSCookie, Gh0st, Bifrose, etc.
- Published by Reddit – BlueTeamSec – RSS (2021-12-02 14:20:07)
- Entities:
- ThreatActor:BlackTech APT, Malware:Bifrose, Malware:TSCookie, Keyphrase:Hacker Group, Keyphrase:Chinese
- Malware:AllaKore
- SideCopy APT: Connecting lures to victims, payloads to infrastructure
- Published by Malwarebytes Unpacked (2021-12-03 01:00:00)
- Entities:
- ThreatActor:SideCopy, Keyphrase:Payload, Keyphrase:Exfiltration, Keyphrase:Trojanized, Keyphrase:Decoy
- Malware:BoomBox Malware
- Behind the unprecedented effort to protect customers against the NOBELIUM nation-state attack
- Published by Microsoft Security Blog (2021-12-03 02:00:28)
- Entities:
- Incident:Attack, ThreatActor:UNC2452, Keyphrase:Nation-state, Company:Microsoft Corporation, Keyphrase:Tactics Techniques & Procedures
- Malware:NativeZone
- Behind the unprecedented effort to protect customers against the NOBELIUM nation-state attack
- Published by Microsoft Security Blog (2021-12-03 02:00:28)
- Entities:
- Incident:Attack, ThreatActor:UNC2452, Keyphrase:Nation-state, Company:Microsoft Corporation, Keyphrase:Tactics Techniques & Procedures
- Malware:EnvyScout
- Behind the unprecedented effort to protect customers against the NOBELIUM nation-state attack
- Published by Microsoft Security Blog (2021-12-03 02:00:28)
- Entities:
- Incident:Attack, ThreatActor:UNC2452, Keyphrase:Nation-state, Company:Microsoft Corporation, Keyphrase:Tactics Techniques & Procedures
- Malware:VaporRage
- Behind the unprecedented effort to protect customers against the NOBELIUM nation-state attack
- Published by Microsoft Security Blog (2021-12-03 02:00:28)
- Entities:
- Incident:Attack, ThreatActor:UNC2452, Keyphrase:Nation-state, Company:Microsoft Corporation, Keyphrase:Tactics Techniques & Procedures
