Este reporte corresponde a una selección de las últimas noticias, alertas de seguridad, vulnerabilidades, ataques y casos de estudio observados durante las últimas horas. Esta información ha sido recopilada para entregar un panorama general de las amenazas más importantes del momento. El objetivo principal es dar visibilidad rápida sobre los cambios en la tendencia y la evolución del cibercrimen para generar conciencia y estrategias de protección en base a estos riesgos emergentes.
Noticias y Casos de Estudio
- El Grupo APT Norcoreano «BlueNoroff» Estaría Recurriendo A La Recolección De Credenciales De Diferentes Organizaciones | CronUp Ciberseguridad
- Nvidia targets insider attacks with digital fingerprinting technology | CSO Online
- TikTok CEO told to «step up efforts to comply» with digital laws (malwarebytes.com)
- NSA publishes IPv6 Security Guidance – Help Net Security
- Australia fronts International Counter Ransomware Taskforce | CSO Online
- Microsoft 365 to block downloaded Excel XLL add-ins to boost security (bleepingcomputer.com)
- FBI Says North Korean Hackers Behind $100 Million Horizon Bridge Crypto Theft (thehackernews.com)
- U.S. sues Google for abusing dominance over online ad market (bleepingcomputer.com)
- Administrator of RSOCKS Proxy Botnet Pleads Guilty – Krebs on Security
- Microsoft 365 outage takes down Teams, Exchange Online, Outlook (bleepingcomputer.com)
- BlackBerry’s Inaugural Quarterly Threat Intelligence Report Reveals Threat Actors Launch One Malicious Threat Every Minute (darkreading.com)
- Cybersecurity Budgets Increase for Retail & Hospitality Industry (darkreading.com)
- Top FinTech API Security Challenges (gbhackers.com)
- Former Doctor Imprisoned for Attempting to Hire Hitmen | Darknetlive
- Researchers Pioneer PoC Exploit for NSA-Reported Bug in Windows CryptoAPI (darkreading.com)
Ciberataques e Incidentes
- GoTo Notifica Que Cibercriminales Lograron Robar Copias De Seguridad Y Una Clave De Cifrado De Sus Clientes | CronUp Ciberseguridad
- Riot Games receives ‘ransom email’ for stolen source code following social engineering attack – The Record from Recorded Future News
- DuoLingo investigating dark web post offering data from 2.6 million accounts – The Record from Recorded Future News
- Pakistan hit by power outage, is it the result of a cyber attack?Security Affairs
- [#DataLeak] Precaución, una posible DB de PUMA Chile | Twitter
- Chinese threat actor DragonSpark targets East Asian businesses | CSO Online
- Hilton denies hack after data from 3.7 million Honors customers offered for sale – The Record from Recorded Future News
- Russia suffered record number of DDoS attacks last year: report – The Record from Recorded Future News
- Zacks Investment Research data breach affects 820,000 clients (bleepingcomputer.com)
- Protecting Against Malicious Use of Remote Monitoring and Management Software | CISA
- Experian Glitch Exposing Credit Files Lasted 47 Days – Krebs on Security
Vulnerabilidades
- Log4j Vulnerabilities Are Here to Stay — Are You Prepared? (darkreading.com)
- Chrome 109 update addresses six security vulnerabilitiesSecurity Affairs
- VMSA-2023-0001 (vmware.com)
Malware
- Chinese Hackers Utilize Golang Malware in DragonSpark Attacks to Evade Detection (thehackernews.com)
- Ransomware access brokers use Google ads to breach your network (bleepingcomputer.com)
- Hackers Using Sliver Framework Instead of Cobalt Strike & Metasploit (gbhackers.com)
- New stealthy Python RAT malware targets Windows in attacks (bleepingcomputer.com)
Ransomware (nuevas víctimas publicadas)
Fecha de Publicación | Título de la Publicación | Actor de Amenazas |
---|---|---|
2023-01-25 | merlinpcbgroup.com | lockbit3 |
2023-01-25 | Copper Mountain | alphv |
2023-01-25 | BOMCALCADO | mallox |
2023-01-25 | First International Food co Ltd | mallox |
2023-01-24 | xlntinc.com | lockbit3 |
2023-01-24 | elsan.care | lockbit3 |
2023-01-24 | IFPA | alphv |

Ingeniero en Ciberseguridad por la Universidad Tecnológica de Chile, Speaker, Analista de Ciberinteligencia, Investigador y Redactor para CronUp Ciberseguridad.