Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2020-07-21Malwarebytes LabsHossein Jazi, Jérôme Segura
Chinese APT group targets India and Hong Kong using new variant of MgBot malware
MgBot BRONZE HIGHLAND
2020-07-21MalwarebytesHossein Jazi, Jérôme Segura
Chinese APT group targets India and Hong Kong using new variant of MgBot malware
KSREMOTE Cobalt Strike MgBot Evasive Panda
2020-06-25MalwarebytesJérôme Segura
Web skimmer hides within EXIF metadata, exfiltrates credit cards via image files
magecart
2020-06-17MalwarebytesHossein Jazi, Jérôme Segura
Multi-stage APT attack drops Cobalt Strike using Malleable C2 feature
Cobalt Strike
2020-06-03MalwarebytesHossein Jazi, Jérôme Segura
New LNK attack tied to Higaisa APT discovered
Higaisa
2020-05-06MalwarebytesHossein Jazi, Jérôme Segura, Thomas Reed
New Mac variant of Lazarus Dacls RAT distributed via Trojanized 2FA app
Dacls
2020-02-10MalwarebytesAdam Kujawa, Chris Boyd, David Ruiz, Jérôme Segura, Jovi Umawing, Nathan Collier, Pieter Arntz, Thomas Reed, Wendy Zamora
2020 State of Malware Report
magecart Emotet QakBot REvil Ryuk TrickBot WannaCryptor
2019-06-04MalwarebytesJérôme Segura
Magecart skimmers found on Amazon CloudFront CDN
magecart
2019-04-26MalwarebytesJérôme Segura
GitHub hosted Magecart skimmer used against hundreds of e-commerce sites
magecart
2019-02-26MalwarebytesJérôme Segura
New Golang brute forcer discovered amid rise in e-commerce attacks
StealthWorker Go WallyShack
2018-07-26Malwarebyteshasherezade, Jérôme Segura
‘Hidden Bee’ miner delivered via improved drive-by download toolkit
Hidden Bee
2018-07-16Malwarebytes Labshasherezade, Jérôme Segura
Magniber ransomware improves, expands within Asia
Magniber
2018-04-10Malwarebytes LabsJérôme Segura
‘FakeUpdates’ campaign leverages multiple website platforms
FAKEUPDATES
2018-03-14Malwarebytes Labshasherezade, Jérôme Segura, Vasilios Hioureas
Hermes ransomware distributed to South Koreans via recent Flash zero-day
Hermes
2018-01-12MalwarebytesJérôme Segura
Fake Spectre and Meltdown patch pushes Smoke Loader malware
SmokeLoader
2017-09-21MalwarebytesJérôme Segura
Fake IRS notice delivers customized spying tool
RMS
2017-04-20MalwarebytesJérôme Segura
Binary Options malvertising campaign drops ISFB banking Trojan
ISFB
2017-01-11Malwarebyteshasherezade, Jérôme Segura
Post-holiday spam campaign delivers Neutrino Bot
Neutrino
2016-10-17MalwarebytesJérôme Segura
New-looking Sundown EK drops Smoke Loader, Kronos banker
Kronos SmokeLoader
2015-06-24MalwarebytesJérôme Segura
Elusive HanJuan EK Drops New Tinba Version (updated)
Fobber
2015-06-12Malwarebytes LabsJérôme Segura
Unusual Exploit Kit Targets Chinese Users (Part 2)
Chinad
2015-05-28Malwarebytes LabsJérôme Segura
Unusual Exploit Kit Targets Chinese Users (Part 1)
Chinad
2015-01-08MalwarebytesJérôme Segura
Major malvertising campaign spreads Kovter Ad Fraud malware
Kovter
2014-02-17MalwarebytesJérôme Segura
Hiding in plain sight: a story about a sneaky banking Trojan
KINS VM Zeus
2012-11-05MalwarebytesJérôme Segura
Citadel: a cyber-criminal’s ultimate weapon?
Citadel