Malpedia Library

Click here to download all references as Bib-File.•

2021-11-10 ⋅ Randori ⋅ Randori Attack Team
Zero-Day Disclosure: Palo Alto Networks GlobalProtect VPN CVE-2021-3064

2021-11-09 ⋅ Cisco Talos ⋅ Claudio Bozzato, Lilith Wyatt
Cisco Talos finds 10 vulnerabilities in Azure Sphere’s Linux kernel, Security Monitor and Pluton

2021-11-03 ⋅ Cisco Talos ⋅ Caitlin Huey, Chetan Raghuprasad, Vanja Svajcer
Microsoft Exchange vulnerabilities exploited once again for ransomware, this time with Babuk
Babuk CHINACHOPPER

2021-11-02 ⋅ GoSecure ⋅ Lilly Chalupowski
New Malware “Gameloader” in Discord Malspam Campaign Identified by GoSecure Titan Labs

2021-10-28 ⋅ Lookout ⋅ Kristina Balaam, Paul Shunk
Rooting Malware Makes a Comeback: Lookout Discovers Global Campaign
AbstractEmu

2021-10-26 ⋅ Cisco Talos ⋅ Edmund Brumaghin, Mariano Graziano, Nick Mavis
SQUIRRELWAFFLE Leverages malspam to deliver Qakbot, Cobalt Strike
Cobalt Strike QakBot Squirrelwaffle

2021-10-21 ⋅ Netskope ⋅ Gustavo Palazolo
DBatLoader: Abusing Discord to Deliver Warzone RAT
Ave Maria DBatLoader

2021-10-20 ⋅ RiskIQ ⋅ Jennifer Grob
Overview of Malware Hosted on Discord's Content Delivery Network

2021-10-19 ⋅ Cisco Talos ⋅ Asheer Malhotra
Malicious campaign uses a barrage of commodity RATs to target Afghanistan and India
DCRat Quasar RAT

2021-10-19 ⋅ Cisco ⋅ Artsiom Holub
STRRAT, ZLoader, and HoneyGain
STRRAT Zloader

2021-10-04 ⋅ Cisco ⋅ Tiago Pereira
Threat hunting in large datasets by clustering security events
BazarBackdoor TrickBot

2021-09-30 ⋅ Cisco ⋅ Arnaud Zobec, Vitor Ventura
A wolf in sheep's clothing: Actors spread malware by leveraging trust in Amnesty International and fear of Pegasus

2021-09-27 ⋅ Security Soup Blog ⋅ Ryan Campbell
DoppelDridex Delivered via Slack and Discord
DoppelDridex

2021-09-21 ⋅ Trend Micro ⋅ Josefino Fajilago IV, Nikki Madayag
Cryptominer z0Miner Uses Newly Discovered Vulnerability CVE-2021-26084 to Its Advantage

2021-09-19 ⋅ NetbyteSEC ⋅ Fareed
Discovering Linux ELF Beacon of Cobalt Strike Tool
Vermilion Strike

2021-09-19 ⋅ The Record ⋅ Catalin Cimpanu
Alaska discloses ‘sophisticated’ nation-state cyberattack on health service

2021-09-16 ⋅ Cisco ⋅ Tiago Pereira, Vitor Ventura
Operation Layover: How we tracked an attack on the aviation industry to five years of compromise
AsyncRAT Houdini NjRAT

2021-09-09 ⋅ Symantec ⋅ Threat Hunter Team
Grayfly: Chinese Threat Actor Uses Newly-discovered Sidewalk Malware
CROSSWALK MimiKatz SideWalk

2021-09-07 ⋅ CUJOAI ⋅ Albert Zsigovits
Threat Alert: Mirai/Gafgyt Fork with New DDoS Modules Discovered
Bashlite Mirai

2021-08-31 ⋅ Cisco Talos ⋅ Edmund Brumaghin, Vitor Ventura
Attracting flies with Honey(gain): Adversarial abuse of proxyware