Malpedia Library

Click here to download all references as Bib-File.•

2024-10-21 ⋅ Ministry of Justice and Security ⋅ National Coordinator for Counterterrorism and Security
Cyber Security Picture Netherlands 2024

2024-10-21 ⋅ SOCRadar ⋅ SOCRadar
Biggest Education Industry Attacks in 2024
OverFlame

2024-10-21 ⋅ VMRay ⋅ VMRay Labs Team
Latrodectus: A year in the making
Latrodectus

2024-10-20 ⋅ cocomelonc ⋅ cocomelonc
Malware and cryptography 33: encrypt payload via Lucifer algorithm. Simple C example.

2024-10-19 ⋅ Emanuele De Lucia on Security ⋅ Emanuele De Lucia
“Hey ESET, Wait for the Leak”: Dissecting the “OctoberSeventh” Wiper targeting ESET customers in Israel
OctoberSeventh

2024-10-19 ⋅ Elastic ⋅ Salim Bitam
Tricks and Treats: GHOSTPULSE’s new pixel- level deception
HijackLoader

2024-10-18 ⋅ Forcepoint ⋅ Mayur Sewani
Inside the Latrodectus Malware Campaign Old School Phishing Meets Innovative Payload Delivery
Latrodectus

2024-10-18 ⋅ Netskope ⋅ Leandro Froes
New Bumblebee Loader Infection Chain Signals Possible Resurgence
BumbleBee

2024-10-18 ⋅ SpyCloud ⋅ Kyla Cardona
A Deep Dive Into the Intricate Chinese Cybercrime Ecosystem

2024-10-17 ⋅ Sekoia ⋅ Quentin Bourgue, Sekoia TDR
ClickFix tactic: The Phantom Meet
Rhadamanthys Stealc

2024-10-17 ⋅ Cisco Talos ⋅ Asheer Malhotra, Dmytro Korzhevin, Vanja Svajcer, Vitor Ventura
UAT-5647 targets Ukrainian and Polish entities with RomCom malware variants
MeltingClaw ROMCOM RAT ShadyHammock RomCom

2024-10-17 ⋅ Loader Insight Agency ⋅ LIA
Correlating Vidar Stealer Build IDs Based on Loader Tasks
Lumma Stealer SmokeLoader Vidar

2024-10-17 ⋅ Microsoft Security ⋅ Microsoft Threat Intelligence
New macOS vulnerability, “HM Surf”, could lead to unauthorized data access

2024-10-17 ⋅ Hunt.io ⋅ Hunt.io
From Warm to Burned: Shedding Light on Updated WarmCookie Infrastructure
WarmCookie

2024-10-16 ⋅ nao_sec ⋅ nao_sec
IcePeony with the '996' work culture
IceCache IceEvent IcePeony

2024-10-16 ⋅ ASEC ⋅ AhnLab
AhnLab and NCSC Release Joint Report on Microsoft Zero-Day Browser Vulnerability (CVE-2024-38178)
APT37

2024-10-16 ⋅ BitSight ⋅ André Tavares
Exfiltration over Telegram Bots: Skidding Infostealer Logs
404 Keylogger Agent Tesla

2024-10-16 ⋅ Trend Micro ⋅ Jaromír Hořejší, Nitesh Surana
Fake LockBit, Real Damage: Ransomware Samples Abuse AWS S3 to Steal Data
BockLit

2024-10-16 ⋅ ThreatMon ⋅ Aziz Kaplan, ThreatMon, ThreatMon Malware Research Team
X-ZIGZAG Technical Malware Analysis Report
AsyncRAT X-ZIGZAG

2024-10-16 ⋅ ⋅ ASEC ⋅ ASEC
An Lab and the National Cyber Security Center (NCSC), joint report distribution and Microsoft browser 0-DAY discovery (CVE-2024-38178)