Malpedia Library

Click here to download all references as Bib-File.•

2021-03-04 ⋅ Flashpoint ⋅ Flashpoint
Breaking: Elite Cybercrime Forum “Maza” Breached by Unknown Attacker

2021-03-03 ⋅ ⋅ Cert-UA ⋅ Cert-UA
Renewal of cyber attacks using the Pterodo hacker group Armageddon/Gamaredon
Pteranodon

2021-03-03 ⋅ ⋅ GTSC ⋅ GTSC
'Mild' update on Microsoft Exchange 0day security vulnerability being used to attack organizations in Vietnam
ToddyCat

2021-03-03 ⋅ splunk ⋅ Ryan Kovar
Detecting HAFNIUM Exchange Server Zero-Day Activity in Splunk
HAFNIUM

2021-03-03 ⋅ DomainTools ⋅ Joe Slowik
Centreon to Exim and Back: On the Trail of Sandworm
Exaramel PAS

2021-03-03 ⋅ ⋅ Kaspersky Labs ⋅ Sergey Golovanov
New targeted RTM attacks

2021-03-02 ⋅ Microsoft ⋅ Tom Burt
New nation-state cyberattacks (HAFNIUM)

2021-03-02 ⋅ Metabase Q ⋅ Jesus Dominguez, Ocelot Offensive Security Team
Ploutus is back, targeting Itautec ATMs in Latin America
Ploutus ATM

2021-03-02 ⋅ Volexity ⋅ Josh Grunzweig, Matthew Meltzer, Sean Koessel, Steven Adair, Thomas Lancaster
Operation Exchange Marauder: Active Exploitation of Multiple Zero-Day Microsoft Exchange Vulnerabilities
CHINACHOPPER HAFNIUM

2021-03-02 ⋅ Möbius Strip Reverse Engineering ⋅ Rolf Rolles
An Exhaustively-Analyzed IDB for FlawedGrace
FlawedGrace

2021-03-02 ⋅ Cisco Talos ⋅ Asheer Malhotra
ObliqueRAT returns with new campaign using hijacked websites
Oblique RAT

2021-03-02 ⋅ Atlantic Council ⋅ James Shires, JD Work, Luca Allodi, Patrick Howell O'Neill, Robert Morgus, Trey Herr, Winnona Desombre
Countering Cyber Proliferation: Zeroing in on Access-as-a-Service

2021-03-01 ⋅ Acronis ⋅ Acronis Security
Threat analysis: Dharma (CrySiS) ransomware
Dharma

2021-03-01 ⋅ Group-IB ⋅ Oleg Skulkin, Roman Rezvukhin, Semyon Rogachev
Ransomware Uncovered 2020/2021
RansomEXX BazarBackdoor Buer Clop Conti DoppelPaymer Dridex Egregor IcedID Maze PwndLocker QakBot RansomEXX REvil Ryuk SDBbot TrickBot Zloader

2021-03-01 ⋅ Dr.Web ⋅ Dr.Web
Study of the Spyder modularbackdoor for targeted attacks
Spyder

2021-03-01 ⋅ FireEye ⋅ FireEye, Mandiant
ACCELLION, INC. File Transfer Appliance (FTA) Security Assessment
DEWMODE

2021-03-01 ⋅ Microsoft ⋅ Microsoft
Detect and defend against the recent nation-state cyber attack
SUNBURST

2021-03-01 ⋅ sonatype ⋅ Ax Sharma
Newly Identified Dependency Confusion Packages Target Amazon, Zillow, and Slack; Go Beyond Just Bug Bounties

2021-02-28 ⋅ NetbyteSEC
Deobfuscating Emotet Macro Document and Powershell Command
Emotet

2021-02-28 ⋅ michenriksen blog ⋅ Michael Henriksen
Finding Evil Go Packages