Malpedia Library

Click here to download all references as Bib-File.•

2021-04-26 ⋅ CISA ⋅ CISA, Department of Homeland Security, FBI
Russian Foreign Intelligence Service (SVR)Cyber Operations: Trends and Best Practices for Network Defenders
elf.wellmess WellMess

2021-04-21 ⋅ Bleeping Computer ⋅ Lawrence Abrams
Massive Qlocker ransomware attack uses 7zip to encrypt QNAP devices

2021-04-15 ⋅ GOV.UK ⋅ Dominic Raab, ForeignCommonwealth & Development Office
Russia: UK and US expose global campaign of malign activity by Russian intelligence services

2021-04-14 ⋅ Vice ⋅ Lorenzo Franceschi-Bicchierai
Meet The Ransomware Gang Behind One of the Biggest Supply Chain Hacks Ever
Clop

2021-04-13 ⋅ Silent Push ⋅ Martijn Grooten
Malicious infrastructure as a service
IcedID PhotoLoader QakBot

2021-03-31 ⋅ FireEye ⋅ David Via, Scott Runnels
Back in a Bit: Attacker Use of the Windows Background Intelligent Transfer Service

2021-03-18 ⋅ ⋅ SUPO Finnish Security Intelligence Service ⋅ SUPO Finnish Security Intelligence Service
Supo identified the cyber espionage operation against the parliament as APT31
APT31

2021-03-16 ⋅ Morphisec ⋅ Nadav Lorber
Tracking HCrypt: An Active Crypter as a Service
AsyncRAT LimeRAT Remcos

2021-03-15 ⋅ Palo Alto Networks Unit 42 ⋅ Asher Davila, Ruchna Nigam, Vaibhav Singhal, Zhibin Zhang
New Mirai Variant Targeting New IoT Vulnerabilities, Including in Network Security Devices
Mirai

2021-03-11 ⋅ DEVO ⋅ Fran Gomez
Detection and Investigation Using Devo: HAFNIUM 0-day Exploits on Microsoft Exchange Service
CHINACHOPPER MimiKatz

2021-03-05 ⋅ Sophos ⋅ SOPHOS MTR
HAFNIUM: Advice about the new nation-state attack

2021-03-04 ⋅ NCC Group ⋅ Ollie Whitehouse
Deception Engineering: exploring the use of Windows Service Canaries against ransomware
Ryuk

2021-03-03 ⋅ 360 netlab ⋅ Alex Turing, GenShen Ye
Fbot is now riding the traffic and transportation smart devices
FBot

2021-03-02 ⋅ Atlantic Council ⋅ James Shires, JD Work, Luca Allodi, Patrick Howell O'Neill, Robert Morgus, Trey Herr, Winnona Desombre
Countering Cyber Proliferation: Zeroing in on Access-as-a-Service

2021-02-17 ⋅ YouTube (AGDC Services) ⋅ AGDC Services
How Malware Can Resolve APIs By Hash
Emotet Mailto

2021-02-17 ⋅ Välisluureamet Estonian Foreign Intelligence Service ⋅ Välisluureamet Estonian Foreign Intelligence Service
Estonian Foreign Intelligence Service public report 2021

2021-02-17 ⋅ Security Service of Ukraine ⋅ Security Service of Ukraine
SBU blocks activity of transnational hacking group
Egregor

2021-02-12 ⋅ CERT-FR ⋅ CERT-FR
The Malware-Aa-A-Service Emotet
Emotet

2021-02-03 ⋅ Vice Motherboard ⋅ Joseph Cox, Lorenzo Franceschi-Bicchierai
A Spyware Vendor Seemingly Made a Fake WhatsApp to Hack Targets

2021-01-27 ⋅ S2W LAB Inc. ⋅ Sojun Ryu
How to communicate between RAT infected devices (White paper)
Volgmer