Malpedia Library

Click here to download all references as Bib-File.•

2020-12-07 ⋅ Censys ⋅ Censys
Advanced Persistent Infrastructure Tracking
WellMess

2020-12-07 ⋅ Google ⋅ Bernhard Grill, Borbala Benko, Cecilia M. Procopiuc, David Tao, Elie Bursztein, Fabian Kaczmarczyck, Jennifer Pullman, Luca Invernizzi
Spotlight: Malware Lead Generation at Scale

2020-12-07 ⋅ ⋅ Qianxin ⋅ Red Raindrop Team
Blocking APT: Qi'anxin QOWL engine defeats BITTER's targeted attacks on domestic government and enterprises

2020-12-07 ⋅ Proofpoint ⋅ Proofpoint Threat Research Team
Commodity .NET Packers use Embedded Images to Hide Payloads
Agent Tesla Loki Password Stealer (PWS) Remcos

2020-12-07 ⋅ NSA ⋅ NSA
Russian State-Sponsored Actors Exploiting Vulnerability in VMware® Workspace ONE Access Using Compromised Credentials

2020-12-07 ⋅ Group-IB ⋅ Nikita Rostovcev
The footprints of Raccoon: a story about operators of JS-sniffer FakeSecurity distributing Raccoon stealer
Raccoon

2020-12-04 ⋅ Red Canary ⋅ Red Canary
Yellow Cockatoo: Search engine redirects, in-memory remote access trojan, and more
Yellow Cockatoo RAT

2020-12-03 ⋅ Kaspersky ⋅ GReAT
APT annual review: What the world’s threat actors got up to in 2020
TwoSail Junk

2020-12-03 ⋅ PICUS Security ⋅ Süleyman Özarslan
How to Beat Nefilim Ransomware Attacks
Nefilim

2020-12-03 ⋅ Bleeping Computer ⋅ Lawrence Abrams
Kmart nationwide retailer suffers a ransomware attack
Egregor

2020-12-03 ⋅ IBM ⋅ Claire Zaboeva, Melissa Frydrych
IBM Uncovers Global Phishing Campaign Targeting the COVID-19 Vaccine Cold Chain

2020-12-03 ⋅ Recorded Future ⋅ Insikt Group®
Egregor Ransomware, Used in a String of High-Profile Attacks, Shows Connections to QakBot
Egregor QakBot

2020-12-02 ⋅ Sansec ⋅ Sansec Threat Research Team
Persistent parasite in EOL Magento 2 stores wakes at Black Friday
magecart

2020-12-02 ⋅ RiskIQ ⋅ Corian Kennedy
Shadow Academy: Hiding in the shadows of Mabna Institute
Silent Librarian

2020-12-02 ⋅ Red Canary ⋅ twitter (@redcanary)
Tweet on increased #Qbot activity delivering Cobalt Strike & #Egregor ransomware
Cobalt Strike Egregor QakBot

2020-12-02 ⋅ SentinelOne ⋅ Phil Stokes
APT32 Multi-stage macOS Trojan Innovates on Crimeware Scripting Technique
OceanLotus

2020-12-02 ⋅ RiskIQ ⋅ Team RiskIQ
‘Shadow Academy’ Targets 20 Universities Worldwide

2020-12-02 ⋅ ESET Research ⋅ Matthieu Faou
Turla Crutch: Keeping the “back door” open
Crutch Gazer Turla

2020-12-01 ⋅ ⋅ LAC ⋅ Yoshihiro Ishikawa
[Urgent Report] Targeted attack by "SigLoader" that exploits Microsoft's digital signature file confirmed
SigLoader

2020-12-01 ⋅ Qianxin ⋅ Qi Anxin Threat Intelligence Center
Blade Eagle Group - Targeted attack group activities circling the Middle East and West Asia's cyberspace revealed
SpyNote BladeHawk