Malpedia Library

Click here to download all references as Bib-File.•

2022-09-14 ⋅ Cybereason ⋅ Derrick Masters, Loïc Castel
THREAT ANALYSIS REPORT: Abusing Notepad++ Plugins for Evasion and Persistence
Meterpreter

2022-09-14 ⋅ Seguranca Informatica ⋅ Pedro Tavares
URSA trojan is back with a new dance
Mispadu

2022-09-14 ⋅ Secureworks ⋅ Counter Threat Unit ResearchTeam
Opsec Mistakes Reveal COBALT MIRAGE Threat Actors
TUNNELFISH

2022-09-14 ⋅ ESET Research ⋅ Mathieu Tartare, Thibaut Passilly, Vladislav Hrčka
You never walk alone: The SideWalk backdoor gets a Linux variant
SideWalk

2022-09-14 ⋅ KISA ⋅ KISA
TTPs#7: Analysis on Lateral Movement Strategy Using SMB/Admin Share

2022-09-14 ⋅ Trend Micro ⋅ Sunil Bharti
A Post-exploitation Look at Coinminers Abusing WebLogic Vulnerabilities
Kinsing

2022-09-13 ⋅ DataBreaches.net ⋅ Dissent
Singapore corporations making progress in preventing cyberattacks
ALTDOS

2022-09-13 ⋅ Proofpoint ⋅ Alexander Rausch, Joshua Miller, Kyle Eaton
Look What You Made Me Do: TA453 Uses Multi-Persona Impersonation to Capitalize on FOMO

2022-09-13 ⋅ Abnormal ⋅ Crane Hassold
Back to School: BEC Group Targets Teachers with Payroll Diversion Attacks

2022-09-13 ⋅ AdvIntel ⋅ Advanced Intelligence
AdvIntel's State of Emotet aka "SpmTools" Displays Over Million Compromised Machines Through 2022
Conti Cobalt Strike Emotet Ryuk TrickBot

2022-09-13 ⋅ Palo Alto Networks Unit 42 ⋅ Jeff White
OriginLogger: A Look at Agent Tesla’s Successor
Agent Tesla OriginLogger

2022-09-13 ⋅ Sansec Threat Research ⋅ Sansec Threat Research Team
Magento vendor Fishpig hacked, backdoors added
Rekoobe

2022-09-12 ⋅ Trend Micro ⋅ Nitesh Surana
Security Breaks: TeamTNT’s DockerHub Credentials Leak

2022-09-12 ⋅ VMRay ⋅ Pascal Brackmann
The evolution of GuLoader
CloudEyE

2022-09-12 ⋅ Arctic Wolf ⋅ Alex Ammons, Arctic Wolf Labs Team, Markus Neis, Ross Phillips, Steven Campbell, Teresa Whitmore
Chiseling In: Lorenz Ransomware Group Cracks MiVoice And Calls Back For Free
Chisel Lorenz

2022-09-11 ⋅ Github (HavocFramework) ⋅ C5pider
Havoc
Havoc

2022-09-10 ⋅ ⋅ Malverse ⋅ greenplan
Realizziamo un C&C Server in Python (Bankshot)
Bankshot

2022-09-08 ⋅ Trend Micro ⋅ Alfredo Oliveira, David Fiser, Nitesh Surana
How Malicious Actors Abuse Native Linux Tools in Attacks

2022-09-08 ⋅ Mandiant ⋅ Alden Wahlstrom, Alice Revelli, Cameron Sabel, Jon Ford, Kelli Vanderlee, Luke McNamara, Sam Riddell
What to Expect When You’re Electing: Preparing for Cyber Threats to the 2022 U.S. Midterm Elections

2022-09-08 ⋅ Microsoft ⋅ Microsoft Security Threat Intelligence
Microsoft investigates Iranian attacks against the Albanian government
ZeroCleare