Malpedia Library

Click here to download all references as Bib-File.•

2023-05-25 ⋅ Lab52 ⋅ Lab52
New tricks of APT29 – update on the CERT.PL report

2023-05-25 ⋅ cyble ⋅ Cyble, Cyble Research Labs
Invicta Stealer Spreading Through Phony GoDaddy Refund Invoices
Invicta Stealer

2023-05-25 ⋅ Mandiant ⋅ Corey Hildebrandt, Daniel Kapellmann Zafra, Keith Lunden, Ken Proska, Nathan Brubaker, Rushikesh Nandedkar
COSMICENERGY: New OT Malware Possibly Related To Russian Emergency Response Exercises
LIGHTWORK PIEHOP

2023-05-24 ⋅ Intezer ⋅ Nicole Fishbein
CryptoClippy is Evolving to Pilfer Even More Financial Data
CryptoClippy

2023-05-24 ⋅ cyble ⋅ Cyble
Notable DDoS Attack Tools and Services Supporting Hacktivist Operations in 2023
UserSec

2023-05-24 ⋅ BushidoToken Blog ⋅ BushidoToken
Unmasking Ransomware Using Stylometric Analysis: Shadow, 8BASE, Rancoz
8Base

2023-05-24 ⋅ Check Point Research ⋅ Jiri Vinopal, Marc Salinas Fernandez
Agrius Deploys MoneyBird in Targeted Attacks against Israeli Organizations
Pink Sandstorm

2023-05-24 ⋅ Secureworks ⋅ Counter Threat Unit ResearchTeam
Chinese Cyberespionage Group BRONZE SILHOUETTE Targets U.S. Government and Defense Organizations
Volt Typhoon

2023-05-24 ⋅ Microsoft ⋅ Microsoft Threat Intelligence
Volt Typhoon targets US critical infrastructure with living-off-the-land techniques
Volt Typhoon

2023-05-24 ⋅ CISA ⋅ CISA
AA23-144a: People's Republic of China State-Sponsored Cyber Actor Living off the Land to Evade Detection

2023-05-24 ⋅ Zscaler ⋅ Brett Stone-Gross, Nikolaos Pantazopoulos
Technical Analysis of Pikabot
Pikabot

2023-05-23 ⋅ AhnLab ⋅ ASEC
DarkCloud Infostealer Being Distributed via Spam Emails
DarkCloud Stealer

2023-05-23 ⋅ Cert-AgID ⋅ Cert-AgID
Technical analysis and considerations on Strela malware
StrelaStealer

2023-05-23 ⋅ Secplicity ⋅ Ryan Estes
Scratching the Surface of Rhysida Ransomware
Rhysida

2023-05-23 ⋅ Aleksandar Milenkoski
Kimsuky | Ongoing Campaign Using Tailored Reconnaissance Toolkit
RandomQuery

2023-05-23 ⋅ U.S. Department of the Treasury ⋅ U.S. Department of the Treasury
Treasury Targets DPRK Malicious Cyber and Illicit IT Worker Activities

2023-05-23 ⋅ loginsoft ⋅ Saharsh Agrawal
Taming the Storm: Understanding and Mitigating the Consequences of CVE-2023-27350
Clop LockBit Silence

2023-05-23 ⋅ ESET Research ⋅ Lukáš Štefanko
Android app breaking bad: From legitimate screen recording to file exfiltration within a year

2023-05-23 ⋅ Kaspersky Labs ⋅ Giampaolo Dedola
Meet the GoldenJackal APT group. Don’t expect any howls
Jackal GoldenJackal

2023-05-22 ⋅ ⋅ Cert-UA ⋅ Cert-UA
Espionage activity of UAC-0063 against Ukraine, Kazakhstan, Kyrgyzstan, Mongolia, Israel, India (CERT-UA#6549)
UAC-0063