Malpedia Library

Click here to download all references as Bib-File.•

2020-12-08 ⋅ FireEye ⋅ FireEye
Unauthorized Access of FireEye Red Team Tools

2020-12-08 ⋅ FireEye ⋅ Kevin Mandia
FireEye Shares Details of Recent Cyber Attack, Actions to Protect Community

2020-12-08 ⋅ ZDNet ⋅ Catalin Cimpanu
Norway says Russian hacking group APT28 is behind August 2020 Parliament hack

2020-12-08 ⋅ Sophos ⋅ Anand Aijan, Bill Kearney, Gabor Szappanos, Mark Loman, Peter Mackenzie, Sean Gallagher, Sergio Bestulic, Syed Shahram
Egregor ransomware: Maze’s heir apparent
Egregor Maze

2020-12-07 ⋅ Censys ⋅ Censys
Advanced Persistent Infrastructure Tracking
WellMess

2020-12-07 ⋅ Google ⋅ Bernhard Grill, Borbala Benko, Cecilia M. Procopiuc, David Tao, Elie Bursztein, Fabian Kaczmarczyck, Jennifer Pullman, Luca Invernizzi
Spotlight: Malware Lead Generation at Scale

2020-12-07 ⋅ ⋅ Qianxin ⋅ Red Raindrop Team
Blocking APT: Qi'anxin QOWL engine defeats BITTER's targeted attacks on domestic government and enterprises

2020-12-07 ⋅ Proofpoint ⋅ Proofpoint Threat Research Team
Commodity .NET Packers use Embedded Images to Hide Payloads
Agent Tesla Loki Password Stealer (PWS) Remcos

2020-12-07 ⋅ NSA ⋅ NSA
Russian State-Sponsored Actors Exploiting Vulnerability in VMware® Workspace ONE Access Using Compromised Credentials

2020-12-07 ⋅ Group-IB ⋅ Nikita Rostovcev
The footprints of Raccoon: a story about operators of JS-sniffer FakeSecurity distributing Raccoon stealer
Raccoon

2020-12-04 ⋅ Red Canary ⋅ Red Canary
Yellow Cockatoo: Search engine redirects, in-memory remote access trojan, and more
Yellow Cockatoo RAT

2020-12-03 ⋅ Kaspersky ⋅ GReAT
APT annual review: What the world’s threat actors got up to in 2020
TwoSail Junk

2020-12-03 ⋅ PICUS Security ⋅ Süleyman Özarslan
How to Beat Nefilim Ransomware Attacks
Nefilim

2020-12-03 ⋅ Bleeping Computer ⋅ Lawrence Abrams
Kmart nationwide retailer suffers a ransomware attack
Egregor

2020-12-03 ⋅ IBM ⋅ Claire Zaboeva, Melissa Frydrych
IBM Uncovers Global Phishing Campaign Targeting the COVID-19 Vaccine Cold Chain

2020-12-03 ⋅ Recorded Future ⋅ Insikt Group®
Egregor Ransomware, Used in a String of High-Profile Attacks, Shows Connections to QakBot
Egregor QakBot

2020-12-02 ⋅ Sansec ⋅ Sansec Threat Research Team
Persistent parasite in EOL Magento 2 stores wakes at Black Friday
magecart

2020-12-02 ⋅ RiskIQ ⋅ Corian Kennedy
Shadow Academy: Hiding in the shadows of Mabna Institute
Silent Librarian

2020-12-02 ⋅ Red Canary ⋅ twitter (@redcanary)
Tweet on increased #Qbot activity delivering Cobalt Strike & #Egregor ransomware
Cobalt Strike Egregor QakBot

2020-12-02 ⋅ SentinelOne ⋅ Phil Stokes
APT32 Multi-stage macOS Trojan Innovates on Crimeware Scripting Technique
OceanLotus