Cyware Daily Threat Intelligence November 13, 2018

Top Malware Reported in the Last 24 Hours

Operation Shaheen
The Pakistani Air Force was hit by a cyberattack by a newly discovered hacker group called White Company, which appears to be a state-backed group. The Pakistani military became a victim to a long-term campaign dubbed "Operation Shaheed", which saw hackers drop RATs and spyware on the Pakistani Air Force. The malware samples were delivered to victims in phishing emails, that purported to come from a Belgian locksmith business. 

Dharma ransomware
Security experts discovered a new variant of the Dharma ransomware that is capable of evading detection by almost all antivirus products. So far, four variants of Dharma have been discovered between October and November 2018. However, the new variant could be the most worrisome as it could infect users who rely on only antivirus solutions. 

Android malware
A malware-laced app was found lurking in the Google Play Store for almost a year. The malware was hidden in an app that posed as a call recording app called "Simple Call Recorder". The app was downloaded over 5,000 times. Fortunately, Google has removed the malicious app from the Play Store. 

Top Breaches Reported in the Last 24 Hours

Huntsville Hospital
Alabama-based Huntsville Hospital revealed that a data breach that affected its online application vendor Jobscience, may have compromised the personal data of job applicants. The healthcare organization said that it is currently sending notification letters to the affected customers. However, it is still unclear as to how many people were affected by the breach. 

Healthcare.gov breach
Healthcare.gov revealed that the data breach, which first came to light in October, saw hackers customers' personal and sensitive data. The Centers for Medicare and Medicaid Services (CMS) explained that the sensitive data exposed may include customers’ names, dates, of birth, addresses, gender and the last four digit of the Social Security numbers. However, CMS said that no diagnosis or treatment information was compromised by the breach. The organization also added that customers' financial information also remained safe from hackers. 




  • Share this blog:
To enhance your experience on our website, we use cookies to help us understand how you interact with our website. By continuing navigating through Cyware’s website and its products, you are accepting the placement and use of cookies. You can also choose to disable your web browser’s ability to accept cookies and how they are set. For more information, please see our Privacy Policy.