Malpedia Library

Click here to download all references as Bib-File.•

2021-09-21 ⋅ Trend Micro ⋅ Josefino Fajilago IV, Nikki Madayag
Cryptominer z0Miner Uses Newly Discovered Vulnerability CVE-2021-26084 to Its Advantage

2021-09-19 ⋅ NetbyteSEC ⋅ Fareed
Discovering Linux ELF Beacon of Cobalt Strike Tool
Vermilion Strike

2021-09-19 ⋅ The Record ⋅ Catalin Cimpanu
Alaska discloses ‘sophisticated’ nation-state cyberattack on health service

2021-09-16 ⋅ Cisco ⋅ Tiago Pereira, Vitor Ventura
Operation Layover: How we tracked an attack on the aviation industry to five years of compromise
AsyncRAT Houdini NjRAT

2021-09-09 ⋅ Symantec ⋅ Threat Hunter Team
Grayfly: Chinese Threat Actor Uses Newly-discovered Sidewalk Malware
CROSSWALK MimiKatz SideWalk

2021-09-07 ⋅ CUJOAI ⋅ Albert Zsigovits
Threat Alert: Mirai/Gafgyt Fork with New DDoS Modules Discovered
Bashlite Mirai

2021-08-31 ⋅ Cisco Talos ⋅ Edmund Brumaghin, Vitor Ventura
Attracting flies with Honey(gain): Adversarial abuse of proxyware

2021-08-26 ⋅ Minerva Labs ⋅ Minerva Labs
Become A VIP Victim With New Discord Distributed Malware
BlackNET RAT RedLine Stealer

2021-08-12 ⋅ Cisco Talos ⋅ Vanja Svajcer
Signed MSI files, Raccoon and Amadey are used for installing ServHelper RAT
Amadey Raccoon ServHelper

2021-07-27 ⋅ Trend Micro ⋅ Alfredo Oliveira, David Fiser
Threat Actors Exploit Misconfigured Apache Hadoop YARN
Kinsing

2021-07-27 ⋅ Bleeping Computer ⋅ Sergiu Gatlan
UC San Diego Health discloses data breach after phishing attack

2021-07-22 ⋅ The Record ⋅ Catalin Cimpanu
Wiper malware targeting Japanese PCs discovered ahead of Tokyo Olympics opening
VIGILANT CLEANER

2021-07-22 ⋅ Sophos ⋅ Andrew Brandt, Sean Gallagher
Malware increasingly targets Discord for abuse

2021-07-20 ⋅ Huntress Labs ⋅ John Hammond
Security Researchers’ Hunt to Discover Origins of the Kaseya VSA Mass Ransomware Incident
REvil

2021-07-13 ⋅ Microsoft ⋅ Microsoft Threat Intelligence Center (MSTIC)
Microsoft discovers threat actor (DEV-0322) targeting SolarWinds Serv-U software with 0-day exploit

2021-07-02 ⋅ Cisco ⋅ Asheer Malhotra, Justin Thattil
InSideCopy: How this APT continues to evolve its arsenal
AllaKore CetaRAT Lilith NjRAT ReverseRAT

2021-07-01 ⋅ 360 netlab ⋅ Alex.Turing, Chai Linyuan, houliuyang, Hui Wang, Jinye
Mirai_ptea Botnet is Exploiting Undisclosed KGUARD DVR Vulnerability
Mirai

2021-06-22 ⋅ Cisco ⋅ Nick Biasini
Attackers in Executive Clothing - BEC continues to separate orgs from their money

2021-06-04 ⋅ K7 Security ⋅ Mary Muthu Francisca
Glupteba back on track spreading via EternalBlue exploits
Glupteba

2021-06-01 ⋅ Cisco ⋅ Josh Pyorre
Backdoors, RATs, Loaders evasion techniques
BazarNimrod GoldMax Oblique RAT