Malpedia Library

Click here to download all references as Bib-File.•

2024-07-05 ⋅ ⋅ Weixin ⋅ 360 Threat Intelligence Center
APT-C-26 (Lazarus) uses PyPI to attack Windows, Linux, and macOS platforms
SimpleTea SimpleTea

2024-06-27 ⋅ Palo Alto Networks Unit 42 ⋅ Unit 42
Threat Actor Groups Tracked by Palo Alto Networks Unit 42
GOLD REBELLION

2024-06-17 ⋅ splunk ⋅ Splunk Threat Research Team
LNK or Swim: Analysis & Simulation of Recent LNK Phishing

2024-06-17 ⋅ Checkpoint ⋅ Checkpoint
17th June – Threat Intelligence Report
Sp1d3r UNC5537

2024-06-13 ⋅ Volexity ⋅ Volexity Threat Research
DISGOMOJI Malware Used to Target Indian Government

2024-06-12 ⋅ Google ⋅ Google Threat Analysis Group, Mandiant
Insights on Cyber Threats Targeting Users and Enterprises in Brazil
TraderTraitor

2024-06-12 ⋅ Symantec ⋅ Symantec Threat Hunter Team
Ransomware Attackers May Have Used Privilege Escalation Vulnerability as Zero-day
Black Basta UNC4393

2024-06-12 ⋅ Symantec ⋅ Symantec Threat Hunter Team
Ransomware Attackers May Have Used Privilege Escalation Vulnerability as Zero-day
Black Basta

2024-06-11 ⋅ ThreatDown ⋅ Jérôme Segura
SmartApeSG walkthrough
SmartApeSG NetSupportManager RAT

2024-06-11 ⋅ Zscaler ⋅ ThreatLabZ research team
A Brief History of SmokeLoader, Part 1
SmokeLoader

2024-06-09 ⋅ XLab ⋅ Acey9, Alex.Turing
New Threat: A Deep Dive Into the Zergeca Botnet
Zergeca

2024-06-07 ⋅ SOCRadar ⋅ SOCRadar
Grandoreiro Malware Campaign: A Global Threat to Banking Security
Grandoreiro

2024-06-07 ⋅ Security Affairs ⋅ Pierluigi Paganini
Pandabuy was extorted twice by the same Threat Actor
IntelBroker

2024-06-05 ⋅ Mandiant ⋅ Jamie Collier, Michelle Cantos
Phishing for Gold: Cyber Threats Facing the 2024 Paris Olympics
Callisto

2024-06-05 ⋅ Symantec ⋅ Symantec Threat Intelligence
RansomHub: New Ransomware has Origins in Older Knight
Knight RansomHub RansomHub

2024-06-05 ⋅ QuoIntelligence ⋅ Alixia Clarisse Rutayisire
European Election Security At Risk: A Detailed Analysis of State-Sponsored, eCrime, and Hacktivist Threats
Dragonbridge

2024-06-03 ⋅ SYGNIA ⋅ Sygnia Team
China-Nexus Threat Group ‘Velvet Ant’ Abuses F5 Load Balancers for Persistence
PlugX

2024-05-30 ⋅ Akamai ⋅ Maxim Zavodchik, Ryan Barnett, Stiv Kupchik
RedTail Cryptominer Threat Actors Adopt PAN-OS CVE-2024-3400 Exploit
RedTail

2024-05-29 ⋅ Medium (DoingFedTime) ⋅ DoingFedTime
80-000 records exposed in shell data breach by threat actor
Threat Actor 888

2024-05-28 ⋅ Microsoft ⋅ Microsoft Threat Intelligence
Moonstone Sleet emerges as new North Korean threat actor with new bag of tricks
ComeBacker splitloader