Malpedia Library

Click here to download all references as Bib-File.•

2021-05-27 ⋅ JPCERT/CC ⋅ Yuma Masubuchi
Attacks Embedding XMRig on Compromised Servers

2021-05-27 ⋅ FireEye ⋅ Dan Perez, Emiel Haeghebaert, Greg Wood, Sarah Jones, Stephen Eckels
Re-Checking Your Pulse: Updates on Chinese APT Actors Compromising Pulse Secure VPN Devices
UNC2630 UNC2717

2021-05-27 ⋅ Microsoft ⋅ Tom Burt
Another Nobelium Cyberattack

2021-05-27 ⋅ 360 netlab ⋅ Alex.Turing, Chai Linyuan, Jinye
Analysis report of the Facefish rootkit
Facefish

2021-05-26 ⋅ DeepInstinct ⋅ Ron Ben Yizhak
A Deep Dive into Packing Software CryptOne
Cobalt Strike Dridex Emotet Gozi ISFB Mailto QakBot SmokeLoader WastedLocker Zloader

2021-05-26 ⋅ Facebook ⋅ Facebook
Threat Report: The State of Influence Operations 2017-2020

2021-05-26 ⋅ Check Point ⋅ Alex Ilgayev
Melting Ice – Tracking IcedID Servers with a few simple steps
IcedID

2021-05-25 ⋅ Trend Micro ⋅ David Fiser, Magno Logan
TeamTNT Targets Kubernetes, Nearly 50,000 IPs Compromised in Worm-like Attack

2021-05-25 ⋅ lacework ⋅ Lacework Labs
Taking TeamTNT’s Docker Images Offline

2021-05-24 ⋅ Anchored Narratives on Threat Intelligence and Geopolitics ⋅ RJM
Tracking StrongPity with Yara
StrongPity

2021-05-24 ⋅ ⋅ Medium s2wlab ⋅ Seunghoe Kim
Deep Analysis of Raccoon Stealer
Raccoon

2021-05-24 ⋅ MIT Technology Review ⋅ Daniel Golden, Renee Dudley
The Colonial pipeline ransomware hackers had a secret weapon: self-promoting cybersecurity firms
DarkSide DarkSide

2021-05-22 ⋅ Youtube (ACPEnw) ⋅ YouTube (ACPEnw)
Lessons Learned from a Cyber Attack System Admin Perspective
Ryuk

2021-05-21 ⋅ ⋅ LAC ⋅ Yoshihiro Ishikawa
Targeted attack by 'Cobalt Strike loader' that exploits Microsoft's digital signature-Attacker group APT41
Cobalt Strike DUSTPAN

2021-05-21 ⋅ blackarrow ⋅ Pablo Ambite
Leveraging Microsoft Teams to persist and cover up Cobalt Strike traffic
Cobalt Strike

2021-05-21 ⋅ ⋅ НКЦКИ - Главная, Ростелеком-Солар
Research report of the series of attacks on the state authorities of the Russian Federation
Mail-O

2021-05-21 ⋅ The Record ⋅ Catalin Cimpanu
FSB NKTsKI: Foreign ‘cyber mercenaries’ breached Russian federal agencies
Mail-O

2021-05-21 ⋅ Bleeping Computer ⋅ Ionut Ilascu
DarkSide affiliates claim gang's bitcoins in deposit on hacker forum
DarkSide

2021-05-20 ⋅ FBI ⋅ FBI
Alert Number CP-000147-MW: Conti Ransomware Attacks Impact Healthcare and First Responder Networks
Conti

2021-05-20 ⋅ Wired ⋅ Andy Greenberg
The Full Story of the Stunning RSA Hack Can Finally Be Told