Malpedia Library

Click here to download all references as Bib-File.•

2021-08-27 ⋅ Morphisec ⋅ Morphisec Labs
ProxyShell Exchange Exploitation Now Leads To An Increasing Amount Of Cobaltstrike Backdoors
Cobalt Strike

2021-08-27 ⋅ The Record ⋅ Catalin Cimpanu
Phorpiex botnet shuts down, source code goes up for sale
Phorpiex

2021-08-26 ⋅ MIT Technology Review ⋅ Patrick Howell O'Neill
Hackers are trying to topple Belarus’s dictator, with help from the inside

2021-08-26 ⋅ Microsoft ⋅ Microsoft 365 Defender Threat Intelligence Team
Widespread credential phishing campaign abuses open redirector links

2021-08-25 ⋅ DataBreaches.net ⋅ Dissent
Advisories are published, but are enough entities reading them and taking precautions?
ALTDOS

2021-08-25 ⋅ Bitdefender ⋅ Bogdan Botezatu, Cristina Vatamanu, Eduard Budaca, Victor Vrabie
FIN8 Threat Actor Goes Agile with New Sardonic Backdoor

2021-08-25 ⋅ FBI ⋅ FBI
MC-000150-MW: Indicators of Compromise Associated with Hive Ransomware
Hive

2021-08-24 ⋅ Vice Motherboard ⋅ Joseph Cox
How Data Brokers Sell Access to the Backbone of the Internet

2021-08-24 ⋅ ESET Research ⋅ Mathieu Tartare, Thibaut Passilly
The SideWalk may be as dangerous as the CROSSWALK
Cobalt Strike CROSSWALK SideWalk SparklingGoblin

2021-08-24 ⋅ Volexity ⋅ Damien Cash, Josh Grunzweig, Steven Adair, Thomas Lancaster
North Korean BLUELIGHT Special: InkySquid Deploys RokRAT
RokRAT

2021-08-24 ⋅ Kaspersky ⋅ Igor Golovin
Triada Trojan in WhatsApp MOD
Triada

2021-08-24 ⋅ Palo Alto Networks Unit 42 ⋅ Doel Santos, Ruchna Nigam
Ransomware Groups to Watch: Emerging Threats
HelloKitty AvosLocker HelloKitty Hive LockBit

2021-08-23 ⋅ SentinelOne ⋅ Joey Chen, Yi-Jhen Hsieh
ShadowPad: the Masterpiece of Privately Sold Malware in Chinese Espionage
PlugX ShadowPad

2021-08-23 ⋅ Sophos SecOps ⋅ Greg Iddon
ProxyShell vulnerabilities in Microsoft Exchange: What to do
LockFile

2021-08-23 ⋅ Youtube (SANS Digital Forensics and Incident Response) ⋅ Chad Tilbury
Keynote: Cobalt Strike Threat Hunting
Cobalt Strike

2021-08-23 ⋅ AT&T ⋅ Fernando Dominguez
PRISM attacks fly under the radar
PRISM

2021-08-23 ⋅ Sentinel LABS ⋅ Jim Walter, Juan Andrés Guerrero-Saade
Hive Attacks | Analysis of the Human-Operated Ransomware Targeting Healthcare
Hive

2021-08-23 ⋅ Netskope ⋅ Gustavo Palazolo
Netskope Threat Coverage: BlackMatter
BlackMatter

2021-08-23 ⋅ FBI ⋅ FBI
Indicators of Compromise Associated with OnePercent Group Ransomware
Cobalt Strike MimiKatz

2021-08-20 ⋅ DataBreaches.net ⋅ Dissent
Singapore real estate firm breached by ALTDOS
ALTDOS