DeadBolt Ransomware encrypts user data on networked QNAP NAS devices using the AES-128 algorithm and then demands a ransom of 0.03 BTC (~$1100) to get the files back. At the same time, the original html page of the NAS devices is replaced with one prepared by ransomware.
TellYouThePass ransomware was an old dormant ransomware supposed to be dead. But Log4j's Log4Shell vulnerability, resurrect it and it jumps into action once again. It targets mostly Chinese speaking population.
Apache Log4j is a Java-based logging utility. The Log4j vulnerability also know as Log4Shell is tracked as CVE-2021-44228. It was disclosed last week by LunaSec researchers.
Cerber Ransomware encrypt Windows and Linux machines by exploiting Atlassian Confluence (CVE-2021-26084) and GitLab (CVE-2021-22205) servers remote code execution vulnerabilities.
Hacker skim sensitive information from e-commerce website by deploying malware dubbed as linux_avp which is written in golang. Analysis of linux_avp suggests that it serves as backdoor, waiting for commands from a Alibaba hosted server 184.108.40.206