Malpedia Library

Click here to download all references as Bib-File.•

2021-08-26 ⋅ Microsoft ⋅ Microsoft 365 Defender Threat Intelligence Team
Widespread credential phishing campaign abuses open redirector links

2021-08-03 ⋅ CrowdStrike ⋅ Eric Loui, Josh Reynolds, Michael DeCristofaro
Squashing SPIDERS: Threat Intelligence, Threat Hunting and Rapid Response Stops SQL Injection Campaign

2021-08-02 ⋅ ⋅ 360 Threat Intelligence Center ⋅ Advanced Threat Institute
Operation Hunting - The latest attack by the CNC (APT-C-48) has been revealed

2021-07-29 ⋅ Microsoft ⋅ Microsoft Defender Threat Intelligence
BazaCall: Phony call centers lead to exfiltration and ransomware
BazarBackdoor BazarCall

2021-07-29 ⋅ Microsoft ⋅ Microsoft 365 Defender Threat Intelligence Team
When coin miners evolve, Part 2: Hunting down LemonDuck and LemonCat attacks
Lemon Duck

2021-07-29 ⋅ Microsoft ⋅ Microsoft 365 Defender Threat Intelligence Team
BazaCall: Phony call centers lead to exfiltration and ransomware
BazarBackdoor Cobalt Strike

2021-07-27 ⋅ ⋅ 360 Threat Intelligence Center ⋅ Advanced Threat Institute
Summary of Kimsuky's secret stealing activities in the first half of 2021

2021-07-22 ⋅ Microsoft ⋅ Microsoft 365 Defender Threat Intelligence Team
When coin miners evolve, Part 1: Exposing LemonDuck and LemonCat, modern mining malware infrastructure
Lemon Duck

2021-07-16 ⋅ PRODAFT Threat Intelligence ⋅ PRODAFT
Toddler - Mobile Banking Botnet Analysis Report
Anatsa

2021-07-16 ⋅ Twitter (@MBThreatIntel) ⋅ Malwarebytes Threat Intelligence
Tweet on Magecart skimmer using steganography
magecart

2021-07-16 ⋅ ⋅ 360 Threat Intelligence Center ⋅ Advanced Threat Institute
APT-C-61 attacks against South Asia

2021-07-15 ⋅ Microsoft ⋅ Microsoft Threat Intelligence
Protecting customers from a private-sector offensive actor using 0-day exploits and DevilsTongue malware
DevilsTongue Caramel Tsunami

2021-07-15 ⋅ Microsoft ⋅ Microsoft Threat Intelligence Center (MSTIC)
Protecting customers from a private-sector offensive actor using 0-day exploits and DevilsTongue malware

2021-07-15 ⋅ ISA ⋅ Tom Winston
What is Cyber Threat Intelligence?

2021-07-14 ⋅ Microsoft ⋅ Microsoft Threat Intelligence Center (MSTIC)
Microsoft delivers comprehensive solution to battle rise in consent phishing emails

2021-07-13 ⋅ Microsoft ⋅ Microsoft Threat Intelligence Center (MSTIC)
Microsoft discovers threat actor (DEV-0322) targeting SolarWinds Serv-U software with 0-day exploit

2021-07-08 ⋅ Team Cymru ⋅ Andy Kraus, Dan Heywood
Enriching Threat Intelligence for the Carbine Loader Crypto-jacking Campaign

2021-07-08 ⋅ Avast Decoded ⋅ Threat Intelligence Team
Decoding Cobalt Strike: Understanding Payloads
Cobalt Strike Empire Downloader

2021-07-06 ⋅ Twitter (@MBThreatIntel) ⋅ Malwarebytes Threat Intelligence
Tweet on a malspam campaign that is taking advantage of Kaseya VSA ransomware attack to drop CobaltStrike
Cobalt Strike

2021-07-02 ⋅ Anchored Narratives on Threat Intelligence and Geopolitics ⋅ RJM
Geopolitical nation-state threat actor overview June 2021