Malpedia Library

Click here to download all references as Bib-File.•

2023-01-24 ⋅ Trellix ⋅ Daksh Kapur, John Fokker, Robert Venal, Tomer Shloman
Cyberattacks Targeting Ukraine Increase 20-fold at End of 2022 Fueled by Russia-linked Gamaredon Activity
Andromeda Formbook Houdini Remcos

2023-01-24 ⋅ DailySecU ⋅ Gil Min-kwon
[Urgent] A Chinese hacker organization that declared hacking war on Korea..."KISA will hack" notice

2023-01-23 ⋅ zero day initiative ⋅ Simon Zuckerbraun
Activation Context Cache Poisoning: Exploiting CSRSS for Privilege Escalation
Denim Tsunami

2023-01-23 ⋅ Medium System Weakness ⋅ Lena (LambdaMamba)
A "strange font" Smishing Campaign that changes behaviour based on User-Agent, and abuses Duck DNS
Roaming Mantis

2023-01-23 ⋅ Uptycs ⋅ Karthickkumar Kathiresan, Shilpesh Trivedi
The Titan Stealer: Notorious Telegram Malware Campaign - Uptycs
TitanStealer

2023-01-23 ⋅ FBI ⋅ FBI National Press Office
FBI Confirms Lazarus Group Cyber Actors Responsible for Harmony's Horizon Bridge Currency Theft

2023-01-20 ⋅ The Record ⋅ Jonathan Greig
Samsung investigating claims of hack on South Korea systems, internal employee platform
Xiaoqiying

2023-01-19 ⋅ Emerging Threats ⋅ Isaac O'Shaughnessy
Vidar Stealer Picks Up Steam!
Vidar

2023-01-19 ⋅ Cisco ⋅ Guilherme Venere
Following the LNK metadata trail
BumbleBee PhotoLoader QakBot

2023-01-19 ⋅ cyble ⋅ Cyble
Gigabud RAT: New Android RAT Masquerading as Government Agencies
Gigabud

2023-01-19 ⋅ Blackberry ⋅ BlackBerry Research & Intelligence Team
Gamaredon (Ab)uses Telegram to Target Ukrainian Organizations
Unidentified VBS 006 (Telegram Loader)

2023-01-19 ⋅ Mandiant ⋅ Cristiana Kittner, Mark Lechtik, Sarah Hawley, Scott Henderson
Suspected Chinese Threat Actors Exploiting FortiOS Vulnerability (CVE-2022-42475)
BOLDMOVE BOLDMOVE

2023-01-19 ⋅ Team Cymru ⋅ S2 Research Team
Darth Vidar: The Dark Side of Evolving Threat Infrastructure
Vidar

2023-01-19 ⋅ Kaspersky Labs ⋅ GReAT
Roaming Mantis implements new DNS changer in its malicious mobile app in 2022
MoqHao

2023-01-19 ⋅ ThreatFabric ⋅ ThreatFabric
Hook: a new Ermac fork with RAT capabilities
Hook

2023-01-18 ⋅ ⋅ ANSSI ⋅ ANSSI
Panorama of the Cyber Threat 2022

2023-01-18 ⋅ Twitter (@Gi7w0rm) ⋅ Gi7w0rm
A long way to SectopRat
SectopRAT

2023-01-17 ⋅ Trendmicro ⋅ Junestherry Dela Cruz
Batloader Malware Abuses Legitimate Tools, Uses Obfuscated JavaScript Files in Q4 2022 Attacks
BATLOADER

2023-01-16 ⋅ Difesa & Sicurezza ⋅ Francesco Bussoletti
Cybercrime, RFQ from Turkey carries AgentTesla and zgRAT
Agent Tesla zgRAT

2023-01-14 ⋅ YouTube (CODE BLUE) ⋅ Takahiro Haruyama
[CB22]Tracking the Entire Iceberg - Long-term APT Malware C2 Protocol Emulation and Scanning
ShadowPad Winnti