Cyber Threat Intelligence 2021/11/29 – 2021/12/06

This week’s most mentioned cybersecurity topics have been covered in this newsletter for you. Latest developments, cyberattacks, data breaches, recent vulnerabilities, threat intelligence insights, and more.

Dark Web Insights

• Cybercrime Underground Flooded with Offers for Initial Access to Shipping and Logistics Organizations
  Learn more
• Fake Covid-19 Vaccine Certificates are Being Sold on the Dark Web
  Learn more
• Payment Cards Going for an Average $9.70 on Dark Web
  Learn more
• Dark Web Market Cannazon Shuts Down After Massive DDoS Attack
  Learn more
• The Jailed Founder of The Silk Road Dark Web Marketplace is Minting NFTs for Charity – and a DAO Has Been Formed to Buy Them and Protest His Imprisonment
  Learn more

Critical Vulnerabilities

• Recently Patched Apache HTTP Server Vulnerability Exploited in Attacks
  CVE-2021-40438
• Determined APT is Exploiting Manage Engine Service Desk Plus Vulnerability
  CVE-2021-37415 | CVE-2021-44077
• Printing Shellz: Critical Bugs Impacting 150 HP Printer Models Patched
  CVE-2021-39237 | CVE-2021-39238
• Critical Bug in Mozilla’s NSS Crypto Library Potentially Affects Several Other Software
  CVE-2021-43527
• New Malware Hides as Legit Nginx Process on E-Commerce Servers
  Learn more
• New EwDoor Botnet Targeting Unpatched AT&T Network Edge Devices
  Learn more
• 300,000 Banking Trojan Infections from Google Play in 4 Months
  Learn more
• Hundreds of Vulnerabilities in Common Wi-Fi Routers Affect Millions of Users
  Learn more

Trending Threat Actors

• Ransomware Operators Threaten to Leak 1.5 TB of Supernus Pharmaceuticals Data
  Learn more
• State-Backed Hackers Increasingly Use RTF Injection for Phishing
  Learn more
• WIRTE APT Group Targets the Middle East Since at least 2019
  Learn more
• Alert: Cuba Ransomware Slams Critical Sector Organizations
  Learn more
• Europol: 18K money mules Caught Laundering Money from Online Fraud
  Learn more
• Hack “Sabbath”: Elusive New Ransomware Detected
  Learn more
• KAX17 Threat Actor is Attempting to Deanonymize Tor Users Running Thousands of Rogue Relays
  Learn more

Important Cybersecurity News

• Panasonic Confirmed That Its Network was Illegally Accessed by Attackers
  Learn more
• Malvertising Attack Distributes Malicious Chrome Extensions, Backdoors
  Learn more
• Someone Stole $120 Million in Crypto by Hacking a DeFi Website
  Learn more
• Omicron Phishing Scam Already Spotted in the UK
  Learn more
• German BSI Agency Warns of Ransomware Attacks Over Christmas Holidays
  Learn more
• Finland Faces Blizzard of Flubot-Spreading Text Messages
  Learn more

Latest posts

• 
  Exploitation Attempts Observed for Critical ownCloud Vulnerability (CVE-2023-49103)November 28, 2023
• 
  Hacker Forums Are on the Rise: Dumped, Raiding, BlackForumsNovember 27, 2023
• 
  Dark Strom’s Android RAT, Sales of Financial Data and UK RDP Access, SiegedSec’s Government BreachNovember 27, 2023