Este reporte corresponde a una selección de las últimas noticias, alertas de seguridad, vulnerabilidades, ataques y casos de estudio observados durante las últimas horas. Esta información ha sido recopilada para entregar un panorama general de las amenazas más importantes del momento. El objetivo principal es dar visibilidad rápida sobre los cambios en la tendencia y la evolución del cibercrimen para generar conciencia y estrategias de protección en base a estos riesgos emergentes.
Noticias y Casos de Estudio
- Understanding Infrastructure-as-Code Risks in the Cloud (darkreading.com)
- Chinese ‘RedZei’ Group Batters Victims With Incessant Vishing Effort (darkreading.com)
- The Guardian contacts data protection regulator after suspected ransomware incident – The Record by Recorded Future
- More than 200 U.S. institutions hit with ransomware in 2022: report – The Record by Recorded Future
- LastPass updates security notice with information about a recent incident (malwarebytes.com)
- Investigation into Twitter data breach launched (cshub.com)
- BlueNoroff Group Activity Detection: Threat Actors Apply Novel Methods to Bypass Windows Mark-of-the-Web (MoTW) Protection – SOC Prime
- Seguridad Informática: ¿A Qué Riesgos Nos Exponemos Con Nuestras Conexiones En Casa? | CronUp Ciberseguridad
- CronUp: Cinco Hitos Que Hicieron De La Ciberinteligencia Nuestro Sello Distintivo | CronUp Ciberseguridad
Ciberataques e Incidentes
- Financial institutions in Portugal and Spain targeted by new Raspberry Robin malware – The Record by Recorded Future
- Toyota, Mercedes, BMW API flaws exposed owners’ personal info (bleepingcomputer.com)
- Los Angeles housing authority says cyberattack disrupting systems – The Record by Recorded Future
- Royal ransomware claims attack on Queensland University of Technology (bleepingcomputer.com)
- WordPress Sites Under Attack from Newly Found Linux Trojan (darkreading.com)
- PyTorch suffers supply chain attack via dependency confusion | CSO Online
- Ongoing Flipper Zero phishing attacks target infosec community (bleepingcomputer.com)
- US. rail and locomotive company Wabtec hit with Lockbit ransomwareSecurity Affairs
- Russian cyberattacks – Special Services – Gov.pl website (www.gov.pl)
- Holiday Spirit? LockBit Gives Children’s Hospital Free Decryptor (darkreading.com)
- Data Security Incident Update – Personal Data Breach Public Communication | Wabtec Corporation
Vulnerabilidades
Malware
- Pupy RAT hiding under WerFault’s cover – K7 Labs (k7computing.com)
- Shc Linux Malware Installing CoinMiner – ASEC BLOG (ahnlab.com)
Ransomware (nuevas víctimas publicadas)
Fecha de Públicación | Título de la Publicación | Actor de Amenaza |
---|---|---|
2023-01-04 | CAPMC | blackbyte |
2023-01-03 | Tarntank Ship Management | play |
2023-01-03 | Aeronautics company Canada - UTC Aerospace Systems, Bombardier, NASA partners | everest |
2023-01-03 | Sirius Shipping | play |
2023-01-03 | SUNY Polytechnic Institute | play |
2023-01-03 | Furetank | play |
2023-01-03 | Dental One | alphv |
2023-01-02 | Stratacache | play |
2023-01-02 | S??? | play |
2023-01-01 | CDER | play |
2023-01-01 | eds-automotive.de | lockbit3 |
2022-12-31 | Centro Médico Virgen De La Caridad | hiveleak |

Alerta Temprana de Riesgos Cibernéticos (ATRc®)
Attack Surface Management
Cyber Threat Intelligence