Malpedia Library

Click here to download all references as Bib-File.•

2022-07-20 ⋅ Mandiant ⋅ Mandiant Threat Intelligence
Evacuation and Humanitarian Documents used to Spear Phish Ukrainian Entities
Cobalt Strike GraphSteel GrimPlant MicroBackdoor

2022-07-20 ⋅ U.S. Cyber Command ⋅ Cyber National Mission Force Public Affairs
Cyber National Mission Force discloses IOCs from Ukrainian networks
Cobalt Strike GraphSteel GrimPlant MicroBackdoor

2022-07-20 ⋅ ⋅ Cert-UA ⋅ Cert-UA
Cyberattack on State Organizations of Ukraine using the topic OK "South" and the malicious program AgentTesla (CERT-UA#4987)
Agent Tesla

2022-07-20 ⋅ Advanced Intelligence ⋅ Marley Smith, Vitali Kremez, Yelisey Boguslavskiy
Anatomy of Attack: Truth Behind the Costa Rica Government Ransomware 5-Day Intrusion
Cobalt Strike

2022-07-20 ⋅ Symantec ⋅ Lahu Khatal, Vishal Kamble
LockBit: Ransomware Puts Servers in the Crosshairs
LockBit

2022-07-19 ⋅ Recorded Future ⋅ Insikt Group®
Amid Rising Magecart Attacks on Online Ordering Platforms, Recent Campaigns Infect 311 Restaurants
magecart

2022-07-19 ⋅ SUCURI ⋅ Matt Morrow
PrestaShop Skimmer Concealed in One Page Checkout Module

2022-07-19 ⋅ ⋅ CERT Poland ⋅ CERT Poland
Development of UNC1151/Ghostwriter attack techniques

2022-07-19 ⋅ Avast ⋅ Dominika Regéciová
Yara vs. HyperScan: Alternative pattern-matching engines

2022-07-19 ⋅ ⋅ Cert-AgID ⋅ Cert-AgID
Analysis and technical insights on the Coper malware used to attack mobile devices
Coper

2022-07-19 ⋅ Fortinet ⋅ Xiaopeng Zhang
New Variant of QakBot Being Spread by HTML File Attached to Phishing Emails
QakBot

2022-07-19 ⋅ ESET Research ⋅ Marc-Etienne M.Léveillé
I see what you did there: A look at the CloudMensis macOS spyware
CloudMensis

2022-07-18 ⋅ Sekoia ⋅ Quentin Bourgue, Threat & Detection Research Team
Ongoing Roaming Mantis smishing campaign targeting France
MoqHao

2022-07-18 ⋅ Censys ⋅ Censys
Russian Ransomware C2 Network Discovered in Censys Data
Cobalt Strike DeimosC2 MimiKatz PoshC2

2022-07-18 ⋅ NetWitness ⋅ Stefano Maccaglia, Will Gragido
FIN13 (Elephant Beetle): Viva la Threat! Anatomy of a Fintech Attack
FIN13

2022-07-18 ⋅ SecurityScorecard ⋅ Vlad Pasca
A Deep Dive Into ALPHV/BlackCat Ransomware
BlackCat

2022-07-17 ⋅ The Times of Israel ⋅ TOI Staff
Cyberattack on Health Ministry website blocks overseas access
Altahrea Team

2022-07-17 ⋅ Resecurity ⋅ Resecurity
Shortcut-Based (LNK) Attacks Delivering Malicious Code On The Rise
AsyncRAT BumbleBee Emotet IcedID QakBot

2022-07-15 ⋅ Gdata ⋅ Karsten Hahn
The real reason why malware detection is hard—and underestimated

2022-07-15 ⋅ HP ⋅ Patrick Schläpfer
Stealthy OpenDocument Malware Deployed Against Latin American Hotels
AsyncRAT