Malpedia Library

Click here to download all references as Bib-File.•

2024-10-15 ⋅ Microsoft ⋅ Akash Chaudhuri, Gourav Khandelwal, Krithika Ramakrishnan, Matthew Mesa, Sagar Patil, Uri Oren
Phish, Click, Breach: Hunting for a Sophisticated Cyber Attack
UNC4393

2024-10-15 ⋅ Trend Micro ⋅ Cj Arsley Mateo, Jacob Santos, Sarah Pearl Camiling, Trend Micro Research
Silent Threat: Red Team Tool EDRSilencer Disrupting Endpoint Security Solutions
EDRSilencer

2024-10-15 ⋅ ⋅ Weixin ⋅ 360 Threat Intelligence Center
Analysis of the attack activities of APT-C-35 (belly brain worm) against a manufacturing company in South Asia
Unidentified 117 (Donot Loader)

2024-10-14 ⋅ Trend Micro ⋅ Adremel Redondo, Adriel Isidro, Andre Filipe Codod, Charles Adrian Marty, Christian Alpuerto, Kim Benedict Victorio, Lorenzo Laureano, Mark Jason Co
Water Makara Uses Obfuscated JavaScript in Spear Phishing Campaign, Targets Brazil With Astaroth Malware
Astaroth Water Makara

2024-10-14 ⋅ cyble ⋅ Cyble
Hidden in Plain Sight: ErrorFather’s Deadly Deployment of Cerberus
ErrorFather

2024-10-12 ⋅ Qianxin ⋅ Qianxin Threat Intelligence Center
Bitter Group Launches New Trojan Miyarat, Domestic Users Become Primary Ttargets
MiyaRAT

2024-10-11 ⋅ HarfangLab ⋅ Alice Climent-Pommeret
HijackLoader evolution: abusing genuine signing certificates
HijackLoader

2024-10-11 ⋅ Nextron Systems ⋅ Nextron Threat Research Team
In-Depth Analysis of Lynx Ransomware
Lynx

2024-10-11 ⋅ Trend Micro ⋅ Ahmed Kamal, Bahaa Yamany, Mohamed Fahmy, Nick Dai
Earth Simnavaz (aka APT34) Levies Advanced Cyberattacks Against Middle East
STEALHOOK OilRig

2024-10-11 ⋅ zimperium ⋅ Aazim Yaswant
Expanding the Investigation: Deep Dive into Latest TrickMo Samples
TrickMo

2024-10-11 ⋅ Trend Micro ⋅ Ahmed Kamal, Bahaa Yamany, Mohamed Fahmy, Nick Dai
Earth Simnavaz (aka APT34) Levies Advanced Cyberattacks Against UAE and Gulf Regions
STEALHOOK

2024-10-10 ⋅ Hunt.io ⋅ Hunt.io
Unmasking Adversary Infrastructure: How Certificates and Redirects Exposed Earth Baxia and PlugX Activity
Cobalt Strike PlugX

2024-10-10 ⋅ paloalto Netoworks: Unit42 ⋅ Benjamin Chang, Micah Yates, Pranay Kumar Chhaparwal
Lynx Ransomware: A Rebranding of INC Ransomware
INC Lynx

2024-10-10 ⋅ NCSC UK ⋅ NCSC UK
Russian foreign intelligence poses global threat with cyber campaign exploiting established vulnerabilities

2024-10-10 ⋅ US Department of Defense ⋅ CNMF, NCSC UK, NSA, US Department of Justice
Update on SVR Cyber Operations and Vulnerability Exploitation

2024-10-10 ⋅ Zscaler ⋅ Muhammed Irfan V A
Technical Analysis of DarkVision RAT
DarkVision RAT

2024-10-10 ⋅ Security Boulevard ⋅ Jeffrey Burt
Internet Archive is Attacked and 31 Million Files Stolen
Blackmeta

2024-10-10 ⋅ SOCRadar ⋅ SOCRadar
Internet Archive Data Breach and DDoS Attacks: What You Need to Know
Blackmeta

2024-10-10 ⋅ DomainTools ⋅ Steve Behm
Uncovering Domains Created by Octo2’s Domain Generation Algorithm
Coper

2024-10-09 ⋅ Recorded Future ⋅ Insikt Group
Outmaneuvering Rhysida: How Advanced Threat Intelligence Shields Critical Infrastructure from Ransomware
Broomstick Rhysida