Cyware Weekly Threat Intelligence, October 19 - 23, 2020

Weekly Threat Briefing • October 23, 2020
Weekly Threat Briefing • October 23, 2020
The Good
Several good things happened in cyberspace, this week. Microsoft, in collaboration with other firms, released a new framework named Adversarial ML Threat Matrix to protect ML systems against cyberattacks. Different Internet emergency response teams from 539 organizations came together to form a group called Forum of Incident Response and Security Teams (FIRST) with an aim to provide ethical guidelines to cybersecurity professionals during incident response. Moreover, New Zealand launched a new data breach notification tool called NotifyUs to enable data handlers to report data breaches in compliance with the country’s data privacy law.
The Bad
Along with the favorable news, the week noticed several noteworthy data leak incidents. A majority of data leaks were associated with the U.S. voters. In one incident, a hacker exposed information of more than 200 million Americans, including the voter registration data of 186 million on a dark web forum. Besides this, ransomware gangs continued to wreak havoc on several firms such as Société de transport de Montréal (STM) and Sopra Steria.
New Threats
Among new threats discovered this week, researchers discovered a series of new malware, named KashmirBlack botnet, Cliptomaner cryptocurrency miner, and T-RAT. While the Cliptomaner and KashmirBlack botnet were found to be extensively used to mine cryptocurrencies, T-RAT’s capabilities include stealing passwords and cookies, deploying keyloggers, recording audio files, taking screenshots, and retrieving clipboard content.