Malpedia Library

Click here to download all references as Bib-File.•

2024-09-10 ⋅ Stacklok ⋅ Stacklok
Dependency hijacking: Dissecting North Korea’s new wave of DeFi-themed open source attacks targeting developers
BeaverTail InvisibleFerret

2024-09-10 ⋅ ESET Research ⋅ Jakub Souček
CosmicBeetle steps up: Probation period at RansomHub
Scarab Ransomware SpaceColon CosmicBeetle

2024-09-10 ⋅ Cleafy ⋅ Alessandro Strino, Michele Roviello
A new TrickMo saga: from Banking Trojan to Victim's Data Leak
TrickMo

2024-09-10 ⋅ Talos Intelligence ⋅ Joey Chen
DragonRank, a Chinese-speaking SEO manipulator service provider
IISpy PlugX DragonRank

2024-09-10 ⋅ ThreatMon ⋅ Aziz Kaplan, ThreatMon, ThreatMon Malware Research Team
Ailurophile Stealer Technical Malware Analysis Report

2024-09-09 ⋅ Denwp Research ⋅ Tonmoy Jitu
Dissecting Lumma Malware: Analyzing the Fake CAPTCHA and Obfuscation Techniques - Part 2
Lumma Stealer

2024-09-09 ⋅ LinkedIn (Idan Tarab) ⋅ Idan Tarab
APT CoralRaider Expands Arsenal: AmadeyBot, FTP Innovations, and Complex Domain Strategy
Amadey

2024-09-08 ⋅ Wired ⋅ Andy Greenberg
A (Strange) Interview With the Russian-Military-Linked Hackers Targeting US Water Utilities

2024-09-06 ⋅ Trend Micro ⋅ Pierre Lee, Vickie Su
TIDRONE Targets Military and Satellite Industries in Taiwan
TIDRONE

2024-09-06 ⋅ splunk ⋅ Splunk Threat Research Team
Handala’s Wiper: Threat Analysis and Detections
Handala Hatef Handala

2024-09-06 ⋅ Risky.biz ⋅ Catalin Cimpanu
Risky Biz News: Doppelganger gets a kick in the butt from Uncle Sam
RaHDit

2024-09-05 ⋅ Republic of Estonia ⋅ Prosecutor's Office
A GRU military unit launched cyberattacks against Estonian authorities

2024-09-05 ⋅ Estonian Ministry of Foreign Affairs ⋅ avalike suhete osakond
Estonia names Russia’s military intelligence in a first-ever attribution of cyberattacks

2024-09-05 ⋅ NCSC UK ⋅ NCSC UK
UK and allies uncover Russian military unit carrying out cyber attacks and digital sabotage for the first time

2024-09-05 ⋅ Fortinet ⋅ Cara Lin, Vincent Li
Threat Actors Exploit GeoServer Vulnerability CVE-2024-36401
SideWalk

2024-09-05 ⋅ Intego ⋅ Joshua Long
New macOS malware HZ RAT gives attackers backdoor access to Macs
HZ RAT

2024-09-04 ⋅ Natto Thoughts ⋅ Natto Team
Reconnaissance Scanning Tools Used by Chinese Threat Actors and Those Available in Open Source
scanbox Ladon Yasso

2024-09-04 ⋅ Cybershafarat ⋅ Treadstone 71
Major IR leaks
IRLeaks

2024-09-04 ⋅ Trend Micro ⋅ Cedric Pernet, Jaromír Hořejší
Earth Lusca Uses KTLVdoor Backdoor for Multiplatform Intrusion
KTLVdoor KTLVdoor

2024-09-04 ⋅ cyble ⋅ Cyble
The Intricate Babylon RAT Campaign Targets Malaysian Politicians, Government
BabyLon RAT