Malpedia Library

Click here to download all references as Bib-File.•

2021-01-14 ⋅ FBI ⋅ FBI
PIN Number 20210114-001: Cyber Criminals Exploit Network Access and Privilege Escalation

2021-01-14 ⋅ PTSecurity ⋅ PTSecurity
Higaisa or Winnti? APT41 backdoors, old and new
FunnySwitch

2021-01-14 ⋅ Microsoft ⋅ Microsoft 365 Defender Team
Increasing resilience against Solorigate and other sophisticated attacks with Microsoft Defender
SUNBURST

2021-01-13 ⋅ Github (Mave12) ⋅ Mave12
Github Repository: BlackNET 3.7.0.1
BlackNET RAT

2021-01-13 ⋅ ⋅ TEAMT5 ⋅ TeamT5
年度最慘漏洞！深入探究 Oracle WebLogic CVE-2020-14882

2021-01-13 ⋅ InfoSec Handlers Diary Blog ⋅ Brad Duncan
Hancitor activity resumes after a hoilday break
Hancitor

2021-01-13 ⋅ Intezer ⋅ Nicole Fishbein
A Rare Look Inside a Cryptojacking Campaign and its Profit

2021-01-13 ⋅ US-CERT ⋅ US-CERT
Analysis Report (AR21-013A): Strengthening Security Configurations to Defend Against Attackers Targeting Cloud Services

2021-01-12 ⋅ Minerva Labs ⋅ MinervaLabs
Slamming The Backdoor On BazarLoader
BazarBackdoor

2021-01-11 ⋅ Twitter (@dk_samper) ⋅ Dávid Kosť
Tweet on Initial access of Avaddon Ransomware group from an IR engagement
Avaddon

2021-01-11 ⋅ ESET Research ⋅ Matías Porolli
Operation Spalax: Targeted malware attacks in Colombia
Agent Tesla AsyncRAT NjRAT Remcos

2021-01-11 ⋅ Reuters ⋅ Christopher Bing
Exclusive: FBI probes Russian-linked postcard sent to FireEye CEO after cybersecurity firm uncovered hack - sources

2021-01-11 ⋅ Kaspersky Labs ⋅ Costin Raiu, Georgy Kucherin, Igor Kuznetsov
Sunburst backdoor – code overlaps with Kazuar
Kazuar SUNBURST

2021-01-09 ⋅ Connor McGarr's Blog ⋅ Connor McGarr
Malware Development: Leveraging Beacon Object Files for Remote Process Injection via Thread Hijacking
Cobalt Strike

2021-01-09 ⋅ Github (f0wl) ⋅ Marius Genheimer
ezuri_unpack

2021-01-08 ⋅ Zscaler ⋅ Mohd Sadique, Pradeep Kulkarni
Ransomware Delivered Using RDP Brute-Force Attack
Dharma

2021-01-08 ⋅ Reaqta ⋅ ReaQta Threat Intelligence Team
Leonardo S.p.A. Data Breach Analysis

2021-01-08 ⋅ US-CERT ⋅ US-CERT
Alert (AA21-008A): Detecting Post-Compromise Threat Activity in Microsoft Cloud Environments
SUNBURST SUPERNOVA

2021-01-07 ⋅ TRUESEC ⋅ Sebastian Olsson
Avoiding supply-chain attacks similar to SolarWinds Orion’s (SUNBURST)
SUNBURST

2021-01-07 ⋅ Symantec ⋅ Threat Hunter Team
SolarWinds: How a Rare DGA Helped Attacker Communications Fly Under the Radar
SUNBURST