CyberSec Roundup
A synopsis of the latest Cybersecurity News

From SunBurst to SuperNova

As the security teams continued to investigate the Sunburst SolarWinds Orion cyberattack, the Microsoft team discovered the Orion platform was also distributing another backdoor package called SuperNova. This malware appears to be from a different APT group and could allow them to run arbitrary code on any infected machine. Analysis of the malware webshell shows a very high level of sophistication from the threat actor. SolarWinds has officially released an advisory on Supernova and has told all customers to update to the latest versions.

Cyberpunk 2077 Ransomware

Cyberpunk 2077 was one of the most anticipated video games of all time, but when it was released the game had quite a few bugs. However, it was still recognized as a very good game and sold around 13 million copies. A nefarious group has decided to take advantage of the high demand for the game and offer a PC and mobile version of the game from unofficial app stores. This version is in fact ransomware called CodeWare and the group is demanding $500 in bitcoin, else the victims’ files will be deleted. Gamers need to ensure they only use official app stores for their games.

Koei Tecmo Hacked

The Japanese game developer Koei Tecmo recently disclosed that their websites have been hacked. The threat actor used a spear phishing campaign to gain access to the European site and was able to steal a forum database with user information. Koei Tecmo have taken down their American and European websites as they investigate the situation.

By: David Pinder
IT & Security Consultant
Certified Ethical Hacker