In this edition
- 'DP World' Attack: 30,000 containers trapped after Australian Port Breached
- Proxy botnet infiltrates thousands of systems across the globe
- Ransomware gang reports its own victim to authorities for failing to disclose attack
- 'Citrix Bleed' Zero-day exploited in the wild as proof-of-concept circulates
According to Cybersixgill’s data, 530 ransomware results were detected on our Investigative Platform in November, in comparison with 283 results in October. The ransomware gang BlackBasta were responsible for 130 ransomware attacks this month. The top targeted industries were education, healthcare and manufacturing. North America, Germany and the UK were the top targeted countries.
The most mentioned malware for November 2023
In November, Lumma malware had the highest number of mentions on the underground according to the Cybersixgill Investigative Portal.
Lumma malware, also known as Lumma Stealer, is a data-stealing malware that emerged in 2022. It is primarily distributed through phishing emails, YouTube campaigns, and spear-phishing websites. Lumma Stealer is designed to steal sensitive information from infected systems, including passwords, cookies, autofill data, desktop files, and even cryptocurrency wallets.