Malpedia Library

Click here to download all references as Bib-File.•

2021-09-22 ⋅ CISA ⋅ US-CERT
Alert (AA21-265A) Conti Ransomware
Cobalt Strike Conti

2021-09-16 ⋅ Cisco ⋅ Tiago Pereira, Vitor Ventura
Operation Layover: How we tracked an attack on the aviation industry to five years of compromise
AsyncRAT Houdini NjRAT

2021-09-16 ⋅ CISA ⋅ US-CERT
APT Actors Exploiting Newly Identified Vulnerability in ManageEngine ADSelfService Plus

2021-08-31 ⋅ Cisco Talos ⋅ Edmund Brumaghin, Vitor Ventura
Attracting flies with Honey(gain): Adversarial abuse of proxyware

2021-08-12 ⋅ Cisco Talos ⋅ Vanja Svajcer
Signed MSI files, Raccoon and Amadey are used for installing ServHelper RAT
Amadey Raccoon ServHelper

2021-07-28 ⋅ CISA ⋅ Australian Cyber Security Centre (ACSC), CISA, FBI, NCSC UK
Top Routinely Exploited Vulnerabilities

2021-07-21 ⋅ CISA ⋅ US-CERT
Malware Targeting Pulse Secure Devices

2021-07-20 ⋅ CISA ⋅ US-CERT
Alert (AA21-201A): Chinese Gas Pipeline Intrusion Campaign, 2011 to 2013

2021-07-19 ⋅ CISA ⋅ CISA
Alert (AA21-200B): Chinese State-Sponsored Cyber Operations: Observed TTPs
APT40

2021-07-08 ⋅ CISA ⋅ US-CERT
Malware Analysis Report (AR21-189A): DarkSide Ransomware
DarkSide

2021-07-04 ⋅ CISA ⋅ US-CERT
CISA-FBI Guidance for MSPs and their Customers Affected by the Kaseya VSA Supply-Chain Ransomware Attack
REvil REvil

2021-07-02 ⋅ Cisco ⋅ Asheer Malhotra, Justin Thattil
InSideCopy: How this APT continues to evolve its arsenal
AllaKore CetaRAT Lilith NjRAT ReverseRAT

2021-07-01 ⋅ CISA, FBI, NCSC UK, NSA
Russian GRU (APT28) Conducting Global Brute Force Campaign to Compromise Enterprise and Cloud Environments
reGeorg

2021-06-22 ⋅ Cisco ⋅ Nick Biasini
Attackers in Executive Clothing - BEC continues to separate orgs from their money

2021-06-19 ⋅ CISA ⋅ US-CERT
Alert (AA21-200A): Tactics, Techniques, and Procedures of Indicted APT40 Actors Associated with China’s MSS Hainan State Security Department
APT40

2021-06-04 ⋅ K7 Security ⋅ Mary Muthu Francisca
Glupteba back on track spreading via EternalBlue exploits
Glupteba

2021-06-01 ⋅ Cisco ⋅ Josh Pyorre
Backdoors, RATs, Loaders evasion techniques
BazarNimrod GoldMax Oblique RAT

2021-05-28 ⋅ CISA ⋅ US-CERT
Alert (AA21-148A): Sophisticated Spearphishing Campaign Targets Government Organizations, IGOs, and NGOs
Cobalt Strike

2021-05-28 ⋅ CISA ⋅ US-CERT
Malware Analysis Report (AR21-148A): Cobalt Strike Beacon
Cobalt Strike

2021-05-26 ⋅ Cisco Talos ⋅ Vitor Ventura, Warren Mercer
Elizabethan England has nothing on modern-day Russia