Malpedia Library

Click here to download all references as Bib-File.•

2025-03-04 ⋅ Department of Justice ⋅ U.S. Attorney's Office Southern District of New York
10 Chinese Nationals Charged With Large-Scale Hacking Of U.S. And International Victims On Behalf Of The Chinese Government

2025-03-04 ⋅ Hunt.io ⋅ Hunt.io
Exposing Russian EFF Impersonators: The Inside Story on Stealc & Pyramid C2
Pyramid Stealc

2025-03-04 ⋅ Github (prodaft) ⋅ PRODAFT
Ragnar Loader Indicators of Compromise (IOC)
Unidentified 103 (FIN8)

2025-03-04 ⋅ LinkedIn (Idan Tarab) ⋅ Idan Tarab
Unmasking New Infrastructure: UAC-0184’s Espionage Activities

2025-03-04 ⋅ Secureworks ⋅ SecureWorks
GOLD REBELLION
GOLD REBELLION

2025-03-03 ⋅ Trend Micro ⋅ Adam O'Connor, Catherine Loveria, Gabriel Cardoso, Ian Kenefick, Jack Walsh, Jovit Samaniego, Lucas Silva, Stephen Carbery
Black Basta and Cactus Ransomware Groups Add BackConnect Malware to Their Arsenal
Black Basta Black Basta Cactus ReedBed

2025-03-02 ⋅ ropgadget.com ⋅ Jeff White
Pivoting on Black Basta's (leaked) Infrastructure
Black Basta Black Basta

2025-03-01 ⋅ securelist ⋅ securelist
SideWinder targets the maritime and nuclear sectors with an updated toolset
Unidentified 093 (Sidewinder)

2025-03-01 ⋅ ⋅ LeMagIT ⋅ Valéry Rieß-Marchive
Ransomware : de REvil à Black Basta, que sait-on de Tramp ?
Black Basta Black Basta

2025-03-01 ⋅ ZW01f ⋅ Mohamed Ezat
An in-depth analysis of APT37’s latest campaign
RokRAT

2025-02-28 ⋅ Medium walmartglobaltech ⋅ Joshua Platt
Agent AI, Basta Parser Extraordinaire
Black Basta Black Basta

2025-02-28 ⋅ Intel 471 ⋅ Intel 471
Black Basta exposed: A look at a cybercrime data leak
Black Basta Black Basta

2025-02-28 ⋅ Greynoise ⋅ Noah Stone
New DDoS Botnet Discovered: Over 30,000 Hacked Devices, Majority of Observed Activity Traced to Iran
Mirai

2025-02-28 ⋅ Palo Alto Networks Unit 42 ⋅ Margaret Kelley
JavaGhost’s Persistent Phishing Attacks From the Cloud
JavaGhost

2025-02-28 ⋅ KrebsOnSecurity ⋅ Brian Krebs
Notorious Malware, Spam Host “Prospero” Moves to Kaspersky Lab
FAKEUPDATES GootLoader

2025-02-28 ⋅ CrowdStrike ⋅ CrowdStrike
2025 Global Threat Report
GOLD REBELLION UNC4393

2025-02-27 ⋅ Intrinsec ⋅ Equipe CTI
Doppelgänger: New disinformation campaigns spreading on social media through Russian networks

2025-02-27 ⋅ BushidoToken ⋅ william thomas
BlackBasta Leaks: Lessons from the Ascension Health attack
Black Basta

2025-02-27 ⋅ Hunt.io ⋅ Hunt.io
Uncovering Joker’s C2 Network: How Hunt’s SSL History Exposed Its Infrastructure
Joker

2025-02-27 ⋅ SC Media ⋅ SC Staff
Over 600 organizations subjected to global EncryptHub attacks
Larva-208