Malpedia Library

Click here to download all references as Bib-File.•

2021-02-07 ⋅ Bleeping Computer ⋅ Lawrence Abrams
New phishing attack uses Morse code to hide malicious URLs

2021-02-06 ⋅ ⋅ Clairvoyance Security Lab ⋅ Advanced threat research team
Mo Luoxiu (Confucius) organizes a new round of secret theft attacks on South Asian military enterprises
Ave Maria

2021-02-05 ⋅ Silent Push ⋅ Ken
Behavior Clustering just got easier using new characteristics.

2021-02-05 ⋅ Morphisec ⋅ Nadav Lorber
CinaRAT Resurfaces with New Evasive Tactics and Techniques
Quasar RAT

2021-02-05 ⋅ Trend Micro ⋅ Don Ovid Ladores, Junestherry Salvador, Llalum Victoria, Monte de Jesus, Nikko Tamana, Raphael Centeno
New in Ransomware: Seth-Locker, Babuk Locker, Maoloa, TeslaCrypt, and CobraLocker
Babuk TeslaCrypt

2021-02-05 ⋅ Bleeping Computer ⋅ Sergiu Gatlan
Microsoft warns of increasing OAuth Office 365 phishing attacks

2021-02-05 ⋅ Team Cymru ⋅ David Monnier
Kobalos Malware Mapping Potentially Impacted Networks and IP Address Mapping
Kobalos

2021-02-04 ⋅ ClearSky ⋅ ClearSky Research Team
CONTI Modus Operandi and Bitcoin Tracking
Conti Ryuk

2021-02-04 ⋅ Graphika ⋅ Ben Nimmo, Ira Hubert, Yang Cheng
Spamouflage Breakout: Chinese Spam Network Finally Starts To Gain Some Traction

2021-02-03 ⋅ Seguranca Informatica ⋅ Pedro Tavares
New cryptojacking malware called Pro-Ocean is now attacking Apache, Oracle and Redis servers
Pro-Ocean

2021-02-03 ⋅ Sophos Managed Threat Response (MTR) ⋅ Greg Iddon
MTR casebook: Uncovering a backdoor implant in a SolarWinds Orion server
RagnarLocker

2021-02-03 ⋅ Vice Motherboard ⋅ Joseph Cox, Lorenzo Franceschi-Bicchierai
A Spyware Vendor Seemingly Made a Fake WhatsApp to Hack Targets

2021-02-03 ⋅ Avast Decoded ⋅ Jan Rubín, Jan Vojtěšek
Backdoored Browser Extensions Hid Malicious Traffic in Analytics Requests

2021-02-03 ⋅ Stratosphere Lab ⋅ Kamila Babayeva, Sebastian García
Dissecting a RAT. Analysis of DroidJack v4.4 RAT network traffic.
DroidJack

2021-02-02 ⋅ Malwarebytes ⋅ Jérôme Segura
Credit card skimmer piggybacks on Magento 1 hacking spree

2021-02-02 ⋅ The Wall Street Journal ⋅ Robert McMillan
Hackers Lurked in SolarWinds Email System for at Least 9 Months, CEO Says

2021-02-02 ⋅ Reuters ⋅ Christopher Bing, Jack Stubbs, Joseph Menn, Raphael Satter
Exclusive: Suspected Chinese hackers used SolarWinds bug to spy on U.S. payroll agency - sources

2021-02-02 ⋅ Twitter (@TheDFIRReport) ⋅ The DFIR Report
Tweet on recent dridex post infection activity
Cobalt Strike Dridex

2021-02-02 ⋅ Committee to Protect Journalists ⋅ Madeline Earp
How Vietnam-based hacking operation OceanLotus targets journalists
Cobalt Strike

2021-02-02 ⋅ SUCURI ⋅ Denis Sinegubko
Whitespace Steganography Conceals Web Shell in PHP Malware