Malpedia Library

Click here to download all references as Bib-File.•

2020-12-03 ⋅ Bleeping Computer ⋅ Lawrence Abrams
Kmart nationwide retailer suffers a ransomware attack
Egregor

2020-12-03 ⋅ IBM ⋅ Claire Zaboeva, Melissa Frydrych
IBM Uncovers Global Phishing Campaign Targeting the COVID-19 Vaccine Cold Chain

2020-12-03 ⋅ Recorded Future ⋅ Insikt Group®
Egregor Ransomware, Used in a String of High-Profile Attacks, Shows Connections to QakBot
Egregor QakBot

2020-12-02 ⋅ Sansec ⋅ Sansec Threat Research Team
Persistent parasite in EOL Magento 2 stores wakes at Black Friday
magecart

2020-12-02 ⋅ RiskIQ ⋅ Corian Kennedy
Shadow Academy: Hiding in the shadows of Mabna Institute
Silent Librarian

2020-12-02 ⋅ Red Canary ⋅ twitter (@redcanary)
Tweet on increased #Qbot activity delivering Cobalt Strike & #Egregor ransomware
Cobalt Strike Egregor QakBot

2020-12-02 ⋅ SentinelOne ⋅ Phil Stokes
APT32 Multi-stage macOS Trojan Innovates on Crimeware Scripting Technique
OceanLotus

2020-12-02 ⋅ RiskIQ ⋅ Team RiskIQ
‘Shadow Academy’ Targets 20 Universities Worldwide

2020-12-02 ⋅ ESET Research ⋅ Matthieu Faou
Turla Crutch: Keeping the “back door” open
Crutch Gazer Turla

2020-12-01 ⋅ ⋅ LAC ⋅ Yoshihiro Ishikawa
[Urgent Report] Targeted attack by "SigLoader" that exploits Microsoft's digital signature file confirmed
SigLoader

2020-12-01 ⋅ Qianxin ⋅ Qi Anxin Threat Intelligence Center
Blade Eagle Group - Targeted attack group activities circling the Middle East and West Asia's cyberspace revealed
SpyNote BladeHawk

2020-12-01 ⋅ Juniper ⋅ Paul Kimayong
DarkIRC bot exploits recent Oracle WebLogic vulnerability
DarkIRC

2020-12-01 ⋅ FireEye ⋅ FireEye
Solarwinds Breach Resource Center
SUNBURST

2020-12-01 ⋅ Group-IB ⋅ Group-IB, Oleg Skulkin, Roman Rezvukhin, Semyon Rogachev
Egregor ransomware: The legacy of Maze lives on
Egregor QakBot

2020-12-01 ⋅ 360.cn ⋅ jindanlong
Hunting Beacons
Cobalt Strike

2020-12-01 ⋅ Intel 471 ⋅ Intel 471
Steal, then strike: Access merchants are first clues to future ransomware attacks
DoppelPaymer

2020-12-01 ⋅ FireEye ⋅ James T. Bennett
Using Speakeasy Emulation Framework Programmatically to Unpack Malware

2020-12-01 ⋅ Trend Micro ⋅ Ryan Flores
The Impact of Modern Ransomware on Manufacturing Networks
Maze Petya REvil

2020-12-01 ⋅ SUCURI ⋅ Luke Leal
“Free” Symchanger Malware Tricks Users Into Installing Backdoor

2020-12-01 ⋅ US-CERT ⋅ US-CERT
Alert (AA20-336A): Advanced Persistent Threat Actors Targeting U.S. Think Tanks