Cookie Settings

This website uses cookies and similar technologies to provide essential functionality and improve your experience. Some features, such as demo scheduling and chat support, require marketing cookies to function. By clicking "Accept All", you consent to all cookies. Alternatively, you can customize your preferences, but note that declining marketing cookies will limit certain website features.

Cyware Daily Threat Intelligence

Cyware Daily Threat Intelligence - Featured Image

Daily Threat Briefing Dec 31, 2020

The roller coaster year 2020 is just one day away from being a past thing but the same is not with the Emotet. After ruining Christmas eve, the trojan is back in news for hitting several networks of the National Center for Public Health (NVSC) and municipalities in Lithuania in a massive spear-phishing attack.

America’s popular wireless network operator, T-Mobile, suffered another awful data breach that exposed the personal data of its customers. The incident occurred due to unauthorized access to their systems.

Top Breaches Reported in the Last 24 Hours

140GB data leaked

A database of 140GB, purportedly belonging to Door Controls USA, was leaked on a popular dark web forum. The data included manufacturing blueprints, machine-readable manufacturing code, financial and accounting data, as well as various legal documents.

T-Mobile suffers a data breach

T-Mobile has been hit by a new data breach that exposed the personal data of its customers. The security team discovered malicious unauthorized access to their systems that resulted in the leak of some of their customers’ contact numbers, call records, financial data, credit card information, and passwords of account holders.

The city of Cornelia affected

The city of Cornelia is dealing with a ransomware incident that occurred on December 26. Several phone and email services are currently offline.

Top Malware Reported in the Last 24 Hours

Emotet returns

Several systems at the National Center for Public Health (NVSC) and other municipalities in Lithuania have been infected owing to a large-scale Emotet-phishing attack. According to the alert, the malware infected the computers first and later began sending out fake emails addressed to several state institutions. In response to the infections, NVSC has temporarily shut down its email systems.

Top Vulnerabilities Reported in the Last 24 Hours

DHS’ update on SolarWinds platform

The CISA has ordered all U.S federal agencies to update the SolarWinds Orion platform to the latest version. The update comes in the light of the recent massive supply chain attack that affected several U.S government agencies and corporate firms. The affected versions include 2019.4 HF5, 2020.2 RC1, 2020.2 RC2, 2020.2, and 2020.2 HF1. The updated versions - 2019.4 HF6 and 2020.2.1 HF2 - are designed to protect from both SUNBURST and SUPERNOVA malware.

Related Threat Briefings