Malpedia Library

2021-10-20 ⋅ Mandiant ⋅ Jacob Thompson
Hidden in Plain Sight: Identifying Cryptography in BLACKMATTER Ransomware
BlackMatter

2021-10-20 ⋅ Recorded Future ⋅ Insikt Group®
Operation Secondary Infektion Targets Pfizer Vaccine

2021-10-20 ⋅ sonatype ⋅ Sonatype Security Research Team
Newly Found npm Malware Mines Cryptocurrency on Windows, Linux, macOS Devices

2021-10-20 ⋅ Google ⋅ Ashley Shen, Google Threat Analysis Group
Phishing campaign targets YouTube creators with cookie theft malware

2021-10-20 ⋅ Kaspersky ⋅ Ruslan Sabitov
Russian-speaking cybercrime evolution: What changed from 2016 to 2021

2021-10-20 ⋅ Proofpoint ⋅ Bryan Campbell, Proofpoint Threat Insight Team
TA551 Uses ‘SLIVER’ Red Team Tool in New Activity

2021-10-19 ⋅ Twitter (@campuscodi) ⋅ Catalin Cimpanu
Tweet on Moses Staff
MosesStaff

2021-10-19 ⋅ NTT ⋅ Threat Detection Team Security division of NTT
The layered infrastructure operated by APT29
elf.wellmess

2021-10-19 ⋅ Cisco Talos ⋅ Asheer Malhotra
Malicious campaign uses a barrage of commodity RATs to target Afghanistan and India
DCRat Quasar RAT

2021-10-19 ⋅ Malwarebytes ⋅ Jérôme Segura
q-logger skimmer keeps Magecart attacks going
magecart

2021-10-19 ⋅ Cisco ⋅ Artsiom Holub
STRRAT, ZLoader, and HoneyGain
STRRAT Zloader

2021-10-19 ⋅ Trend Micro ⋅ Abdelrhman Sharshar, Jay Yaneza, Sherif Magdy
PurpleFox Adds New Backdoor That Uses WebSockets
FoxSocket PurpleFox

2021-10-19 ⋅ CrowdStrike ⋅ Dan Meyer, Jamie Harris
LightBasin: A Roaming Threat to Telecommunications Companies
LightBasin

2021-10-19 ⋅ Proofpoint ⋅ Axel F, Brandon Murphy, Crista Giering, Georgi Mladenov, Matthew Mesa, Zydeca Cass
Whatta TA: TA505 Ramps Up Activity, Delivers New FlawedGrace Variant
FlawedGrace MirrorBlast

2021-10-18 ⋅ 360 ⋅ 360Cert
Global Advanced Persistent Threat (APT) Research Report for the First Half of 2021
APT-C-60

2021-10-18 ⋅ NortonLifeLock ⋅ Norton Labs
Operation Exorcist - 7 Years of Targeted Attacks against the Roman Catholic Church
NewBounce PlugX Zupdax

2021-10-18 ⋅ Symantec ⋅ Threat Hunter Team
Harvester: Nation-state-backed group uses new toolset to target victims in South Asia
Cobalt Strike Graphon

2021-10-18 ⋅ Medium Confiant ⋅ Taha Karim
Profiling hackers using the Malvertising Attack Matrix by Confiant

2021-10-18 ⋅ McAfee ⋅ Thibault Seret
Is There Really Such a Thing as a Low-Paid Ransomware Operator?
Babuk

2021-10-18 ⋅ Flashpoint ⋅ Flashpoint
REvil Disappears Again: ‘Something Is Rotten in the State of Ransomware’
REvil REvil