Malpedia Library

Click here to download all references as Bib-File.•

2024-04-19 ⋅ dissect.ing ⋅ Scottish Fold
Exploiting a cryptographic vulnerability inside the Donex Ransomware
Donex

2024-04-15 ⋅ UC Santa Cruz ⋅ Alonso Rojas, Alvaro A. Cardenas, Bing Huang, Emmanuele Zambon, Juan Lozano, Keerthi Koneru, Luis Salazar, Marina Krotofil, Ross Baldick, Sebastian R. Castro
A Tale of Two Industroyers: It was the Season of Darkness
Industroyer INDUSTROYER2

2024-03-29 ⋅ CISA ⋅ CISA
Reported Supply Chain Compromise Affecting XZ Utils Data Compression Library, CVE-2024-3094
xzbot

2024-03-05 ⋅ Team Cymru ⋅ S2 Research Team
Coper / Octo - A Conductor for Mobile Mayhem… With Eight Limbs?
Coper

2024-03-01 ⋅ HarfangLab ⋅ HarfangLab CTI
A Comprehensive Analysis of i-SOON’s Commercial Offering
ShadowPad Winnti

2024-02-26 ⋅ SpyCloud ⋅ Ashley Allocca, Kyla Cardona
“Pantsless Data”: Decoding Chinese Cybercrime TTPs

2024-02-26 ⋅ The DFIR Report ⋅ The DFIR Report
SEO Poisoning to Domain Control: The Gootloader Saga Continues
GootLoader

2024-02-20 ⋅ Trendmicro ⋅ Pierre Lee, Sunny Lu
Earth Preta Campaign Uses DOPLUGS to Target Asia
DOPLUGS

2024-02-12 ⋅ Estrellas's Blog ⋅ Otávio M.
Unveiling custom packers: A comprehensive guide
Dridex Simda

2024-02-09 ⋅ Department of Justice ⋅ Office of Public Affairs
International Cybercrime Malware Service Dismantled by Federal Authorities: Key Malware Sales and Support Actors in Malta and Nigeria Charged in Federal Indictments
Ave Maria

2024-02-07 ⋅ Lumen ⋅ Black Lotus Labs
KV-Botnet: Don’t call it a Comeback
KV

2024-01-11 ⋅ Forescout ⋅ Jos Wetzels
Clearing the Fog of War – A critical analysis of recent energy sector cyberattacks in Denmark and Ukraine

2024-01-09 ⋅ Trend Micro ⋅ Arianne Dela Cruz, Charles Steven Derion, Francisrey Joshua Castillo, Henry Salcedo, Ian Kenefick, John Carlo Marquez, John Rainier Navato, Joshua Aquino, Juhn Emmanuel Atanque, Raymart Yambot, Shinji Robert Arasawa
Black Basta-Affiliated Water Curupira’s Pikabot Spam Campaign
Pikabot Water Curupira

2024-01-03 ⋅ CISO Series ⋅ Sean Kelly
Cybersecurity News: Google $5B suit settled, Orbit Chain loses $80M, FDA cyber agreement
IRLeaks

2023-12-14 ⋅ SentinelOne ⋅ Aleksandar Milenkoski
Gaza Cybergang | Unified Front Targeting Hamas Opposition
BarbWire Micropsia Pierogi AridViper

2023-12-14 ⋅ Mandiant ⋅ Adrian McCabe, Geoff Ackerman, Rufus Brown, Ryan Tomcik
Opening a Can of Whoop Ads: Detecting and Disrupting a Malvertising Campaign Distributing Backdoors
DanaBot DarkGate

2023-12-07 ⋅ Palo Alto Networks Unit 42 ⋅ Unit 42
Fighting Ursa Aka APT28: Illuminating a Covert Campaign

2023-12-06 ⋅ Carmelo Ragusa, Luigi Martire
Unveiling “Vetta Loader”: A custom loader hitting Italy and spread through infected USB Drives
Vetta Loader

2023-11-21 ⋅ Checkpoint ⋅ Marc Salinas Fernandez
The Platform Matters: A Comparative Study on Linux and Windows Ransomware Attacks
Gwisin

2023-10-27 ⋅ Kaspersky ⋅ Seongsu Park
A cascade of compromise: unveiling Lazarus’ new campaign
LPEClient PostNapTea