Malpedia Library

Click here to download all references as Bib-File.•

2024-08-29 ⋅ Proofpoint ⋅ Pim Trouerbach, Selena Larson, Tommy Madjar
The Malware That Must Not Be Named: Suspected Espionage Campaign Delivers “Voldemort”
Voldemort

2024-08-21 ⋅ OODA Loop ⋅ OODA Loop
Toyota Customer, Employee Data Leaked in Confirmed Data Breach
ZeroSevenGroup

2024-08-20 ⋅ SiliconAngle ⋅ Duncan Riley
Toyota alleges stolen customer data published on hacking site came from outside supplier
ZeroSevenGroup

2024-07-26 ⋅ Trellix ⋅ Mathanraj Thangaraju, Max Kersten, Tomer Shloman
Handala’s Wiper Targets Israel
Handala Hatef Handala

2024-07-16 ⋅ JPCERT/CC ⋅ Shusei Tomonaga
MirrorFace Attack against Japanese Organisations
LODEINFO NOOPDOOR

2024-07-15 ⋅ Sekoia ⋅ Sekoia TDR
MuddyWater replaces Atera by custom MuddyRot implant in a recent campaign
bugsleep

2024-06-28 ⋅ Trend Micro ⋅ Ahmed Mohamed Ibrahim, Shubham Singh, Sunil Bharti
Examining Water Sigbin's Infection Routine Leading to an XMRig Cryptominer
Water Sigbin

2024-06-25 ⋅ Cado Security ⋅ Nate Bill
From Dormant to Dangerous: P2Pinfect Evolves to Deploy New Ransomware and Cryptominer
P2Pinfect

2024-06-10 ⋅ Mandiant ⋅ Mandiant
UNC5537 Targets Snowflake Customer Instances for Data Theft and Extortion
Lumma Stealer MetaStealer Raccoon RedLine Stealer RisePro Vidar UNC5537

2024-06-03 ⋅ SpyCloud ⋅ James
Reversing Atomic macOS Stealer: Binaries, Backdoors & Browser Theft
AMOS

2024-05-30 ⋅ Akamai ⋅ Maxim Zavodchik, Ryan Barnett, Stiv Kupchik
RedTail Cryptominer Threat Actors Adopt PAN-OS CVE-2024-3400 Exploit
RedTail

2024-05-07 ⋅ ⋅ Gatewatcher ⋅ Gatewatcher
Cybercrime's Anatomy Threats to the Healthcare World

2024-05-04 ⋅ Medium MITRE-Engenuity ⋅ Lex Crumpton
Technical Deep Dive: Understanding the Anatomy of a Cyber Intrusion
WIREFIRE

2024-04-22 ⋅ Microsoft ⋅ Microsoft Threat Intelligence
Analyzing Forest Blizzard’s custom post-compromise tool for exploiting CVE-2022-38028 to obtain credentials
GooseEgg

2024-04-10 ⋅ Proofpoint ⋅ Selena Larson, Tommy Madjar
Security Brief: TA547 Targets German Organizations with Rhadamanthys Stealer
Rhadamanthys

2024-04-08 ⋅ Zscaler ⋅ Nikolaos Pantazopoulos
Automating Pikabot’s String Deobfuscation
Pikabot

2024-03-18 ⋅ Perception Point ⋅ Ariel Davidpur, Peleg Cabra
Operation PhantomBlu: New and Evasive Method Delivers NetSupport RAT
NetSupportManager RAT

2024-03-18 ⋅ PCrisk ⋅ Tomas Meskauskas
FORCE (.FORCE) ransomware virus – removal and decryption options
Phobos

2024-03-04 ⋅ Proofpoint ⋅ Kelsey Merriman, Selena Larson, Tommy Madjar
TA577’s Unusual Attack Chain Leads to NTLM Data Theft

2024-02-29 ⋅ CrowdStrike ⋅ Jean-Philippe Teissier
The Anatomy of an ALPHA SPIDER Ransomware Attack
BlackCat Alpha Spider