Malpedia Library

2020-11-12 ⋅ Australian Cyber Security Centre ⋅ Australian Cyber Security Centre (ACSC)
Biotech research firm Miltenyi Biotec hit by ransomware, data leaked
SDBbot

2020-11-12 ⋅ databreachtoday ⋅ Mathew J. Schwartz
Darkside Ransomware Gang Launches Affiliate Program
DarkSide

2020-10-28 ⋅ Trend Micro ⋅ Aliakbar Zahravi, Cedric Pernet, Daniel Lunghi, Elliot Cao, Jaromír Hořejší, John Zhang, Joseph C Chen, William Gamazo Sanchez
Operation Earth Kitsune: A Dance of Two New Backdoors
AgfSpy DneSpy SLUB Earth Kitsune

2020-10-22 ⋅ ZDNet ⋅ Catalin Cimpanu
EU sanctions Russia over 2015 German Parliament hack

2020-10-19 ⋅ Red Sky Alliance ⋅ Yury Polozov
Possible Identity of a Kuwaiti Hacker NYANxCAT
AsyncRAT

2020-10-19 ⋅ IBM Security ⋅ Chen Nahman, Limor Kessem, Ofir Ozer
New Vizom Malware Discovered Targets Brazilian Bank Customers with Remote Overlay Attacks
Vizom

2020-10-19 ⋅ Trend Micro ⋅ Aliakbar Zahravi, Cedric Pernet, Daniel Lunghi, Eliot Cao, Jaromír Hořejší, John Zhang, Joseph C. Chen, Nelson William Gamazo Sanchez
Operation Earth Kitsune: Tracking SLUB’s Current Operations
SLUB

2020-10-08 ⋅ ⋅ ZEIT Online ⋅ Hakan Tanriverdi, Kai Biermann, Maximilian Zierer, Thi Do Nguyen
Hanois Hacker

2020-09-21 ⋅ ⋅ Qianxin ⋅ RedDrip Team
Operation Tibo: A retaliatory targeted attack from the South Asian APT organization "Mo Luo Suo"
AsyncRAT Darktrack RAT

2020-09-14 ⋅ US-CERT ⋅ US-CERT
Alert (AA20-258A): Chinese Ministry of State Security-Affiliated Cyber Threat Actor Activity

2020-08-07 ⋅ ⋅ CSIRT Italia ⋅ CSIRT ITA
New Phishing-As-A-Service framework

2020-08-04 ⋅ SophosLabs Uncut ⋅ Anand Ajjan, Mark Loman
WastedLocker’s techniques point to a familiar heritage
WastedLocker

2020-07-29 ⋅ Atlantic Council ⋅ June Lee, Stewart Scott, Trey Herr, William Loomis
BREAKING TRUST: Shades of Crisis Across an Insecure Software Supply Chain
EternalPetya GoldenSpy Kwampirs Stuxnet

2020-07-27 ⋅ Trend Micro ⋅ Aliakbar Zahravi
Ensiko: A Webshell With Ransomware Capabilities
Ensikology

2020-07-22 ⋅ SentinelOne ⋅ Jason Reaves, Joshua Platt
Enter the Maze: Demystifying an Affiliate Involved in Maze (SNOW)
ISFB Maze TrickBot Zloader

2020-07-21 ⋅ The Intelligence and Security Committee of Parliament
Report on Russian disinformation campaign by Intelligence and Security Committee of Parliament

2020-07-17 ⋅ Proofpoint ⋅ Sherrod DeGrippo
TA547 Pivots from Ursnif Banking Trojan to Ransomware in Australian Campaign
Adhubllka

2020-07-14 ⋅ Kaspersky Labs ⋅ GReAT
The Tetrade: Brazilian banking malware goes global
Astaroth Grandoreiro Melcoz

2020-06-19 ⋅ ACSC ⋅ Australian Cyber Security Centre (ACSC)
Copy-paste compromises
Copy-Paste

2020-06-19 ⋅ Australian Signals Directorate ⋅ Australian Cyber Security Centre (ACSC)
Advisory 2020-008: Copy-paste compromises - tactics, techniques and procedures used to target multiple Australian networks
Copy-Paste