Cyware Daily Threat Intelligence

Daily Threat Briefing • Dec 26, 2019
This website uses cookies and similar technologies to provide essential functionality and improve your experience. Some features, such as demo scheduling and chat support, require marketing cookies to function. By clicking "Accept All", you consent to all cookies. Alternatively, you can customize your preferences, but note that declining marketing cookies will limit certain website features.
Daily Threat Briefing • Dec 26, 2019
The Maze ransomware gang has recently begun a public shaming campaign by listing the victim organizations or cities - along with their confidential data - on its website. This new tactic has been adopted by the ransomware developers to threaten the victims if they do not pay the ransom. The city of Pensacola, which had experienced a cyberattack earlier this month, is one such victim. Threat actors have publicly revealed 2GB of stolen files after the city refused to pay the ransom of $1 million. The 2GB is a portion of the 32GB data that was stolen by the Maze gang.
In another event, three organizations in Germany, namely the Justus Liebig University, the Bad Homburg city administration, and the Catholic University, have fallen victim to the Emotet infection. This has affected the IT operations of the organizations. In addition to these, the German city of Frankfurt am Main was also under attack by the Emotet botnet. The purpose of the attack on Frankfurt was to distribute other malware such as ransomware.
Top Breaches Reported in the Last 24 Hours
Entercom Radio Network attacked
The radio network giant Entercom has been hit by a cyber attack. This has forced some stations to run previously recorded programs. The company also experienced connectivity problems that disabled email communication, access to files and content for the digital platforms. This is the second time that the network has suffered an attack. The first attack was reported in September.
Files stolen from the city of Pensacola released
The operators of Maze ransomware have released publicly 2GB (out of 32 GB) files that were stolen during the attack on the city of Pensacola. The crooks had demanded a $1 million decrypt the victims’ files. The Maze gang has released a portion of the stolen data as proof of the hack and its capabilities.
New details about Scottish health boards
Hackers have infiltrated the IT systems of Scottish health boards 117 times in last five years. These attacks have affected multiple hospitals, health centers, and GPs’ surgeries. However, it is claimed that no patient care was affected during the attacks.
Top Malware Reported in the Last 24 Hours
Germany under attack by Emotet
Three organizations in Germany - the Justus Liebig University in Gießen, the city administration of Bad Homburg, and the Catholic University in Freiburg - have suffered an attack due to Emotet trojan. Apart from these, the German city of Frankfurt am Main was also under attack by the Emotet botnet. The purpose of the attack on Frankfurt was to distribute other malware such as ransomware.
Top Vulnerabilities Reported in the Last 24 Hours
Use-after-free vulnerability
A use-after-free vulnerability has been detected in Google Chrome WebAudio. The vulnerability has been tracked as CVE-2019-13720 and has a rating of ‘High’ severity on the CVSS scale. The flaw affects Google Chrome prior to 78.0.3904.87. Successful exploitation of the flaw could allow an attacker to remotely execute arbitrary code on the affected system. In order to stay safe, users should update their Security Gateway product to the latest IPS update.