Cookie Settings

This website uses cookies and similar technologies to provide essential functionality and improve your experience. Some features, such as demo scheduling and chat support, require marketing cookies to function. By clicking "Accept All", you consent to all cookies. Alternatively, you can customize your preferences, but note that declining marketing cookies will limit certain website features.

Cyware Daily Threat Intelligence

Cyware Daily Threat Intelligence - Featured Image

Daily Threat Briefing Dec 26, 2019

The Maze ransomware gang has recently begun a public shaming campaign by listing the victim organizations or cities - along with their confidential data - on its website. This new tactic has been adopted by the ransomware developers to threaten the victims if they do not pay the ransom. The city of Pensacola, which had experienced a cyberattack earlier this month, is one such victim. Threat actors have publicly revealed 2GB of stolen files after the city refused to pay the ransom of $1 million. The 2GB is a portion of the 32GB data that was stolen by the Maze gang.

In another event, three organizations in Germany, namely the Justus Liebig University, the Bad Homburg city administration, and the Catholic University, have fallen victim to the Emotet infection. This has affected the IT operations of the organizations. In addition to these, the German city of Frankfurt am Main was also under attack by the Emotet botnet. The purpose of the attack on Frankfurt was to distribute other malware such as ransomware.

Top Breaches Reported in the Last 24 Hours

Entercom Radio Network attacked

The radio network giant Entercom has been hit by a cyber attack. This has forced some stations to run previously recorded programs. The company also experienced connectivity problems that disabled email communication, access to files and content for the digital platforms. This is the second time that the network has suffered an attack. The first attack was reported in September.

Files stolen from the city of Pensacola released

The operators of Maze ransomware have released publicly 2GB (out of 32 GB) files that were stolen during the attack on the city of Pensacola. The crooks had demanded a $1 million decrypt the victims’ files. The Maze gang has released a portion of the stolen data as proof of the hack and its capabilities.

New details about Scottish health boards

Hackers have infiltrated the IT systems of Scottish health boards 117 times in last five years. These attacks have affected multiple hospitals, health centers, and GPs’ surgeries. However, it is claimed that no patient care was affected during the attacks.

Top Malware Reported in the Last 24 Hours

Germany under attack by Emotet

Three organizations in Germany - the Justus Liebig University in Gießen, the city administration of Bad Homburg, and the Catholic University in Freiburg - have suffered an attack due to Emotet trojan. Apart from these, the German city of Frankfurt am Main was also under attack by the Emotet botnet. The purpose of the attack on Frankfurt was to distribute other malware such as ransomware.

Top Vulnerabilities Reported in the Last 24 Hours

Use-after-free vulnerability

A use-after-free vulnerability has been detected in Google Chrome WebAudio. The vulnerability has been tracked as CVE-2019-13720 and has a rating of ‘High’ severity on the CVSS scale. The flaw affects Google Chrome prior to 78.0.3904.87. Successful exploitation of the flaw could allow an attacker to remotely execute arbitrary code on the affected system. In order to stay safe, users should update their Security Gateway product to the latest IPS update.

Related Threat Briefings