Malpedia Library

Click here to download all references as Bib-File.•

2021-08-31 ⋅ ⋅ Qianxin ⋅ Red Raindrop Team
Analysis of suspected Russian-speaking attackers using COVID-19 vaccine bait to attack the Middle East
GRUNT

2021-08-31 ⋅ Yoroi ⋅ Luca Mella, Luigi Martire, Yoroi
Financial Institutions in the Sight of New JsOutProx Attack Waves
JSOutProx

2021-08-31 ⋅ Cisco Talos ⋅ Edmund Brumaghin, Vitor Ventura
Attracting flies with Honey(gain): Adversarial abuse of proxyware

2021-08-30 ⋅ CrowdStrike ⋅ Eric Loui, Josh Reynolds
CARBON SPIDER Embraces Big Game Hunting, Part 1
Bateleur Griffon Carbanak DarkSide JSSLoader PILLOWMINT REvil

2021-08-30 ⋅ CrowdStrike ⋅ Michael Dawson
Hypervisor Jackpotting, Part 2: eCrime Actors Increase Targeting of ESXi Servers with Ransomware
Babuk HelloKitty REvil

2021-08-28 ⋅ YouTube (Kevin Bock) ⋅ Kevin Bock
Even Censors Have a Backup: Examining China’s Double HTTPS Censorship Middleboxes - FOCI 21

2021-08-28 ⋅ The Hacker News ⋅ Ravie Lakshmanan
LockFile Ransomware Bypasses Protection Using Intermittent File Encryption
LockFile

2021-08-27 ⋅ Aon ⋅ Aon’s Cyber Labs, Noah Rubin
Cobalt Strike Configuration Extractor and Parser
Cobalt Strike

2021-08-27 ⋅ University of Maryland ⋅ Dave Levin, Gabriel Naval, Kevin Bock, Kyle Reese
Even Censors Have a Backup: Examining China’s Double HTTPS Censorship Middleboxes

2021-08-27 ⋅ Morphisec ⋅ Morphisec Labs
ProxyShell Exchange Exploitation Now Leads To An Increasing Amount Of Cobaltstrike Backdoors
Cobalt Strike

2021-08-26 ⋅ MIT Technology Review ⋅ Patrick Howell O'Neill
Hackers are trying to topple Belarus’s dictator, with help from the inside

2021-08-26 ⋅ npr ⋅ Dina Temple-Raston
China's Microsoft Hack May Have Had A Bigger Purpose Than Just Spying

2021-08-26 ⋅ The New York Times ⋅ Chris Buckley, Paul Mozur
Spies for Hire: China’s New Breed of Hackers Blends Espionage and Entrepreneurship

2021-08-26 ⋅ Twitter (@ViriBack) ⋅ Dee
Tweet on Vulturi Stealer and it's c2 panel
Vulturi

2021-08-25 ⋅ DataBreaches.net ⋅ Dissent
Advisories are published, but are enough entities reading them and taking precautions?
ALTDOS

2021-08-25 ⋅ Trend Micro ⋅ Hara Hiroaki, Ted Lee
Earth Baku An APT Group Targeting Indo-Pacific Countries With New Stealth Loaders and Backdoor
Cobalt Strike DUSTPAN SideWalk

2021-08-25 ⋅ Bitdefender ⋅ Bogdan Botezatu, Cristina Vatamanu, Eduard Budaca, Victor Vrabie
FIN8 Threat Actor Goes Agile with New Sardonic Backdoor

2021-08-25 ⋅ GoggleHeadedHacker Blog ⋅ Jacob Pimental
Reverse Engineering Crypto Functions: RC4 and Salsa20
REvil

2021-08-25 ⋅ Github (StrangerealIntel) ⋅ StrangerealIntel
FIN7 still active

2021-08-24 ⋅ Bleeping Computer ⋅ Lawrence Abrams
Ransomware gang's script shows exactly the files they're after
Mespinoza