Malpedia Library

Click here to download all references as Bib-File.•

2023-12-07 ⋅ Microsoft ⋅ Microsoft Threat Intelligence
Star Blizzard increases sophistication and evasion in ongoing attacks
Callisto

2023-12-05 ⋅ PWC ⋅ PwC Threat Intelligence
The Tortoise and The Malwahare
SnappyTCP

2023-12-01 ⋅ Twitter (@MsftSecIntel) ⋅ Microsoft Threat Intelligence
Tweet on Danabot leading to cactus ransomware
Cactus DanaBot Storm-1044

2023-11-22 ⋅ Microsoft ⋅ Microsoft Threat Intelligence
Diamond Sleet supply chain compromise distributes a modified CyberLink installer
LambLoad

2023-11-09 ⋅ Microsoft ⋅ Microsoft Threat Intelligence
Microsoft shares threat intelligence at CYBERWARCON 2023
Blue Tsunami

2023-10-31 ⋅ Infoblox ⋅ Infoblox Threat Intelligence Group
Prolific Puma: Shadowy Link Shortening Service Enables Cybercrime
Prolific Puma

2023-10-30 ⋅ Checkpoint ⋅ Checkpoint Research
30TH OCTOBER – THREAT INTELLIGENCE REPORT
SingularityMD

2023-10-18 ⋅ Microsoft ⋅ Microsoft Threat Intelligence
Multiple North Korean threat actors exploiting the TeamCity CVE-2023-42793 vulnerability
FeedLoad ForestTiger HazyLoad RollSling Silent Chollima

2023-10-13 ⋅ Twitter (@MsftSecIntel) ⋅ Microsoft Threat Intelligence
Tweet on Storm-1575 and Dadsec phishing platform
Storm-1575

2023-10-11 ⋅ Twitter (@MsftSecIntel) ⋅ Microsoft Threat Intelligence
Tweet on Storm-0062 exploiting CVE-2023-22515
Storm-0062

2023-09-14 ⋅ Microsoft ⋅ Microsoft Threat Intelligence
Peach Sandstorm password spray campaigns enable intelligence collection at high-value targets
APT33

2023-09-12 ⋅ Microsoft ⋅ Microsoft Threat Intelligence
Malware distributor Storm-0324 facilitates ransomware access
JSSLoader Storm-0324

2023-09-11 ⋅ Symantec ⋅ Symantec Threat Intelligence
Tweet about Symantec discovering a new variant of SiestaGraph
SiestaGraph

2023-08-28 ⋅ Twitter (@MsftSecIntel) ⋅ Microsoft Threat Intelligence
Tweet on AiTM phishing trends
Storm-1295

2023-08-28 ⋅ ⋅ 360 ⋅ 360 Threat Intelligence Center
APT-C-55 (Kimsuky) organization uses Korean domain names for malicious activities

2023-08-24 ⋅ Microsoft ⋅ Microsoft Threat Intelligence
Flax Typhoon using legitimate software to quietly access Taiwanese organizations
Flax Typhoon

2023-08-02 ⋅ Microsoft ⋅ Microsoft Threat Intelligence
Midnight Blizzard conducts targeted social engineering over Microsoft Teams
UNC2452

2023-08-01 ⋅ Qianxin Threat Intelligence Center ⋅ Red Raindrop Team
Analysis of Recent Activities of the Mylobot Botnet
MyloBot

2023-07-26 ⋅ ⋅ Weixin ⋅ Anheng Threat Intelligence Center
APT29 recently faked the German embassy and issued a malicious PDF file
BEATDROP Unidentified 107 (APT29)

2023-07-19 ⋅ Twitter (@MsftSecIntel) ⋅ Microsoft Threat Intelligence
Tweet on targeted attacks against the defense sector in Ukraine and Eastern Europe by the threat actor Secret Blizzard
DeliveryCheck Kazuar