Malpedia Library

2022-11-03 ⋅ 360 netlab ⋅ Liu Ya, RootKiter
P2P Botnets: Review - Status - Continuous Monitoring
FritzFrog Hajime Mozi Pink

2022-11-03 ⋅ Group-IB ⋅ Rustam Mirkasymov
Financially motivated, dangerously activated: OPERA1ER APT in Africa
Cobalt Strike Common Raven

2022-11-03 ⋅ Sentinel LABS ⋅ Antonio Cocomazzi
Black Basta Ransomware | Attacks Deploy Custom EDR Evasion Tools Tied to FIN7 Threat Actor
Black Basta

2022-11-03 ⋅ paloalto Netoworks: Unit42 ⋅ Chris Navarrete, Durgesh Sangvikar, Matthew Tennis, Siddhart Shibiraj, Yanhui Jia, Yu Fu
Cobalt Strike Analysis and Tutorial: Identifying Beacon Team Servers in the Wild
Cobalt Strike

2022-11-03 ⋅ SentinelOne ⋅ SentinelLabs
Black Basta Ransomware | Attacks deploy Custom EDR Evasion Tools tied to FIN7 Threat Actor
Black Basta QakBot SocksBot

2022-11-02 ⋅ CySecurity News ⋅ CySecurity News
Missile Supplier MBDA Breach Disclosed by CloudSEK
Adrastea

2022-11-02 ⋅ Sekoia ⋅ Quentin Bourgue, sekoia, Threat & Detection Research Team
BlueFox Stealer: a newcomer designed for traffers teams
Aurora Stealer BlueFox

2022-11-02 ⋅ cyble ⋅ Cyble
New Laplas Clipper Distributed via SmokeLoader
LaplasClipper

2022-11-02 ⋅ Blackberry ⋅ Blackberry Research
RomCom Threat Actor Abuses KeePass and SolarWinds to Target Ukraine and Potentially the United Kingdom
ROMCOM RAT RomCom

2022-11-02 ⋅ Twitter (@_CPResearch_) ⋅ Checkpoint Research
Tweet on Azov Wiper
Azov Wiper

2022-11-02 ⋅ NOZOMI Network Labs ⋅ Nozomi Networks Labs
Could Threat Actors Be Downgrading Their Malware to Evade Detection?
Bashlite

2022-11-01 ⋅ BlackPoint ⋅ BlackPoint
Ratting Out Arechclient2
SectopRAT

2022-11-01 ⋅ NCSC UK ⋅ NCSC UK
NCSC Annual Review 2022

2022-10-31 ⋅ Kaspersky Labs ⋅ Suguru Ishimaru
APT10: Tracking down LODEINFO 2022, part II
LODEINFO

2022-10-31 ⋅ Kaspersky Labs ⋅ Suguru Ishimaru
APT10: Tracking down LODEINFO 2022, part I
LODEINFO

2022-10-31 ⋅ Twitter (@CryptoInsane) ⋅ CryptoInsane
Tweet about Yanluowang Leaks
Yanluowang

2022-10-31 ⋅ Cynet ⋅ Max Malyutin
Orion Threat Alert: Qakbot TTPs Arsenal and the Black Basta Ransomware
Black Basta Cobalt Strike QakBot

2022-10-31 ⋅ The Record ⋅ Alexander Martin
Mondelez and Zurich reach settlement in NotPetya cyberattack insurance suit
EternalPetya

2022-10-31 ⋅ Elastic ⋅ Andrew Pease, Daniel Stepanic, Derek Ditch, Seth Goodwin
ICEDIDs network infrastructure is alive and well
IcedID

2022-10-31 ⋅ Cyber Geeks ⋅ Vlad Pasca
A Technical Analysis of Pegasus for Android - Part 3
Chrysaor