Malpedia Library

Click here to download all references as Bib-File.•

2022-07-26 ⋅ splunk ⋅ Splunk Threat Research Team
ML Detection of Risky Command Exploit

2022-07-26 ⋅ ⋅ Cert-UA ⋅ Cert-UA
UAC-0010 (Armageddon) cyberattacks using the GammaLoad.PS1_v2 malware (CERT-UA#5003,5013,5069,5071)
Gamaredon Group

2022-07-25 ⋅ Trend Micro ⋅ Byron Gelera, Ieriz Nicolle Gonzalez, Ivan Nicole Chavez, Katherine Casona, Nathaniel Gregory Ragasa, Nathaniel Morales
LockBit Ransomware Group Augments Its Latest Variant, LockBit 3.0, With BlackMatter Capabilities
BlackMatter LockBit

2022-07-25 ⋅ Kaspersky ⋅ GReAT
CosmicStrand: the discovery of a sophisticated UEFI firmware rootkit

2022-07-24 ⋅ Bleeping Computer ⋅ Bill Toulas
QBot phishing uses Windows Calculator sideloading to infect devices
QakBot

2022-07-23 ⋅ BleepingComputer ⋅ Bill Toulas
North Korean hackers attack EU targets with Konni RAT malware
Konni

2022-07-22 ⋅ DataBreaches.net ⋅ Dissent
Recent cyberattacks put Thai citizens’ privacy and data security at greater risk
Desorden Group

2022-07-22 ⋅ vmware ⋅ Sneha Shekar
How Push Notifications are Abused to Deliver Fraudulent Links

2022-07-22 ⋅ Sekoia ⋅ Threat & Detection Research Team
CALISTO continues its credential harvesting campaign
Callisto

2022-07-22 ⋅ PWC UK ⋅ Krystle Reid
Old cat, new tricks, bad habits An analysis of Charming Kitten’s new tools and OPSEC errors
TelegramGrabber

2022-07-21 ⋅ Censys ⋅ Matt Lembright
Russian Ransomware C2 Network Discovered in Censys Data
DeimosC2 PoshC2

2022-07-21 ⋅ Talos ⋅ Talos
Attackers target Ukraine using GoMet backdoor
GoMet

2022-07-21 ⋅ Proofpoint ⋅ Bryan Campbell, Pim Trouerbach, Proofpoint Threat Research Team, Selena Larson
Buy, Sell, Steal, EvilNum Targets Cryptocurrency, Forex, Commodities
EVILNUM Evilnum

2022-07-21 ⋅ Sentinel LABS ⋅ Aleksandar Milenkoski, Jim Walter
LockBit 3.0 Update | Unpicking the Ransomware’s Latest Anti-Analysis and Evasion Techniques
LockBit

2022-07-21 ⋅ ⋅ ASEC ⋅ ASEC Analysis Team
Dissemination of AppleSeed to Specific Military Maintenance Companies
Appleseed

2022-07-20 ⋅ Securonix Threat Labs ⋅ Den Iyzvyk, Oleg Kolesnikov, Tim Peck
STIFF#BIZON Detection Using Securonix – New Attack Campaign Observed Possibly Linked to Konni/APT37 (North Korea) - Securonix
Konni Opal Sleet

2022-07-20 ⋅ Sophos ⋅ Colin Cowie, Gabor Szappanos
OODA: X-Ops Takes On Burgeoning SQL Server Attacks
Maoloa Remcos TargetCompany

2022-07-20 ⋅ Freebuf ⋅ Qi Anxin Threat Intelligence Center
Abused Slack Service: Analysis of APT29's Attack on Italy
Unidentified 098 (APT29 Slack Downloader)

2022-07-20 ⋅ Malwarebytes ⋅ Threat Intelligence Team
Google Ads Lead to Major Malvertising Campaign

2022-07-20 ⋅ Trend Micro ⋅ Buddy Tancio, Erika Mendoza, Jessie Prevost, Joelson Soares, Nusrath Iqra
Analyzing Penetration-Testing Tools That Threat Actors Use to Breach Systems and Steal Data