Malpedia Library

Click here to download all references as Bib-File.•

2021-07-16 ⋅ Binary Defense ⋅ Binary Defense
Mars-Deimos: From Jupiter to Mars and Back again (Part Two)
solarmarker

2021-07-16 ⋅ Twitter (@alex_lanstein) ⋅ Alex Lanstein
Tweet on attacks from UNC2652/NOBELIUM

2021-07-16 ⋅ ⋅ 360 Threat Intelligence Center ⋅ Advanced Threat Institute
APT-C-61 attacks against South Asia

2021-07-15 ⋅ Microsoft ⋅ Microsoft Threat Intelligence
Protecting customers from a private-sector offensive actor using 0-day exploits and DevilsTongue malware
DevilsTongue Caramel Tsunami

2021-07-15 ⋅ DomainTools ⋅ Chad Anderson
American Rescue Plan Act Lures in the Wild

2021-07-15 ⋅ Twitter (@AffableKraut) ⋅ Eric Brandel
Tweet on another digital skimmer/magecart script from the "q-logger" threat actor
magecart

2021-07-15 ⋅ Twitter (@ESETresearch) ⋅ ESET Research
Tweet on FreeBSD targeted with Golang backdoor

2021-07-15 ⋅ ⋅ AhnLab ⋅ AhnLab ASEC Analysis Team
APT attack (by Kimsuky) attempt on a specific person using a word document

2021-07-15 ⋅ YouTube ( DuMp-GuY TrIcKsTeR) ⋅ Jiří Vinopal
Fast API resolving of REvil Ransomware related to Kaseya attack
REvil

2021-07-15 ⋅ Microsoft ⋅ Microsoft Threat Intelligence Center (MSTIC)
Protecting customers from a private-sector offensive actor using 0-day exploits and DevilsTongue malware

2021-07-15 ⋅ Palo Alto Networks Unit 42 ⋅ Alex Hinchliffe, Quinn Cooke, Robert Falcone
Mespinoza Ransomware Gang Calls Victims “Partners,” Attacks with Gasket, "MagicSocks" Tools
Gasket Mespinoza

2021-07-15 ⋅ ReversingLabs ⋅ Robert Simmons
Data Exfiltrator - A New Tactic for Ransomware Adversaries
DataExfiltrator

2021-07-15 ⋅ Facebook ⋅ David Agranovich, Mike Dvilyanski
Taking Action Against Hackers in Iran
Liderc SysKit

2021-07-14 ⋅ Google ⋅ Clement Lecigne, Google Threat Analysis Group, Maddie Stone
How We Protect Users From 0-Day Attacks (CVE-2021-21166, CVE-2021-30551, CVE-2021-33742, CVE-2021-1879)
Cobalt Strike

2021-07-14 ⋅ Bleeping Computer ⋅ Ionut Ilascu
BazarBackdoor sneaks in through nested RAR and ZIP archives
BazarBackdoor

2021-07-14 ⋅ Bitdefender ⋅ Bitdefender
How We Tracked a Threat Group Running an Active Cryptojacking Campaign

2021-07-14 ⋅ Medium TowardsDataScience ⋅ John “Turbo” Conwell
Domain Blooms: Identifying Domain Name Themes Targeted By Threat Actors

2021-07-14 ⋅ Intezer ⋅ Avigayil Mechtinger
Targeted Phishing Attack against Ukrainian Government Expands to Georgia
Unidentified 083 (AutoIT Stealer)

2021-07-14 ⋅ Cado Security ⋅ Christopher Doman
Triage analysis of Serv-U FTP user backdoor deployed by CVE-2021-35211 (DEV-0322)

2021-07-14 ⋅ Kaspersky ⋅ Aseel Kayal, Mark Lechtik, Paul Rascagnères
LuminousMoth APT: Sweeping attacks for the chosen few
Cobalt Strike