Cyware Daily Threat Intelligence November 13, 2018

Share Blog post

Top Malware Reported in the Last 24 Hours

Operation Shaheen
The Pakistani Air Force was hit by a cyberattack by a newly discovered hacker group called White Company, which appears to be a state-backed group. The Pakistani military became a victim to a long-term campaign dubbed "Operation Shaheed", which saw hackers drop RATs and spyware on the Pakistani Air Force. The malware samples were delivered to victims in phishing emails, that purported to come from a Belgian locksmith business. 

Dharma ransomware
Security experts discovered a new variant of the Dharma ransomware that is capable of evading detection by almost all antivirus products. So far, four variants of Dharma have been discovered between October and November 2018. However, the new variant could be the most worrisome as it could infect users who rely on only antivirus solutions. 

Android malware
A malware-laced app was found lurking in the Google Play Store for almost a year. The malware was hidden in an app that posed as a call recording app called "Simple Call Recorder". The app was downloaded over 5,000 times. Fortunately, Google has removed the malicious app from the Play Store. 

Top Breaches Reported in the Last 24 Hours

Huntsville Hospital
Alabama-based Huntsville Hospital revealed that a data breach that affected its online application vendor Jobscience, may have compromised the personal data of job applicants. The healthcare organization said that it is currently sending notification letters to the affected customers. However, it is still unclear as to how many people were affected by the breach. 

Healthcare.gov breach
Healthcare.gov revealed that the data breach, which first came to light in October, saw hackers customers' personal and sensitive data. The Centers for Medicare and Medicaid Services (CMS) explained that the sensitive data exposed may include customers’ names, dates, of birth, addresses, gender and the last four digit of the Social Security numbers. However, CMS said that no diagnosis or treatment information was compromised by the breach. The organization also added that customers' financial information also remained safe from hackers. 

 Tags

spyware
white company
rats
huntsville hospital
healthcaregov breach
operation shaheen
dharma ransomware
android malware

Posted on: November 13, 2018

Get the Daily Threat Briefing delivered to your email!


More from Cyware

Stay updated on the security threat landscape and technology innovations at Cyware with our threat intelligence briefings and blogs.


Join Thousands of Other Cyware Followers!