Malpedia Library

Click here to download all references as Bib-File.•

2020-06-30 ⋅ CrowdStrike ⋅ Chad Hemenway, Chris Cwalina, Josh Burgess, Scot Lippenholz
Playing Chess Against Nation-State and Ransomware Threat Actors

2020-06-30 ⋅ AppGate ⋅ The Immunity Team
Electric Company Ransomware Attack Calls for $14 Million in Ransom
REvil

2020-06-30 ⋅ Blueliv ⋅ Blueliv Labs Team
M00nD3v, HawkEye threat actor, sells malware after COVID-19 diagnosis
HawkEye Keylogger

2020-06-30 ⋅ Bleeping Computer ⋅ Sergiu Gatlan
EvilQuest wiper uses ransomware cover to steal files from Macs
EvilQuest

2020-06-29 ⋅ Cisco Talos ⋅ Paul Rascagnères, Vitor Ventura, Warren Mercer
PROMETHIUM extends global reach with StrongPity3 APT
StrongPity

2020-06-28 ⋅ Security-in-Bits ⋅ Security-in-Bits
Interesting tactic by Ratty & Adwind for distribution of JAR appended to signed MSI
AdWind Ratty

2020-06-26 ⋅ Atlas Cybersecurity ⋅ Atlas Cybersecurity
CryptoCore – Cryptocurrency Exchanges Under Attack
CageyChameleon

2020-06-26 ⋅ BBC ⋅ BBC News
Russian hacker group Evil Corp targets US workers at home
WastedLocker Evil Corp

2020-06-26 ⋅ BleepingComputer ⋅ Lawrence Abrams
New Ransom X Ransomware used in Texas TxDOT cyberattack
RansomEXX

2020-06-26 ⋅ Trend Micro ⋅ Joseph C Chen
US Local Government Services Targeted by New Magecart Credit Card Skimming Attack
magecart

2020-06-26 ⋅ Department of Justice ⋅ Department of Justice
Russian National (Aleksei Burkov, Cardplanet) Sentenced to Prison for Operating Websites Devoted to Fraud and Malicious Cyber Activities

2020-06-26 ⋅ Symantec ⋅ Critical Attack Discovery and Intelligence Team
WastedLocker: Symantec Identifies Wave of Attacks Against U.S. Organizations
donut_injector WastedLocker

2020-06-25 ⋅ Dr.Web ⋅ Dr.Web
BackDoor.ShadowPad.1
ShadowPad

2020-06-25 ⋅ Github (7h3w4lk3r) ⋅ The Walker
Github Repository of PYBACK
pyback

2020-06-25 ⋅ Contextis ⋅ Connor Scott
Zoom In: Emulating 'Exploit Purchase' in Simulated Targeted Attacks

2020-06-25 ⋅ Medium CSIS Techblog ⋅ Aleksejs Kuprins
The RoamingMantis Group’s Expansion to European Apple Accounts and Android Devices
FakeSpy FunkyBot MoqHao

2020-06-24 ⋅ ClearSky ⋅ ClearSky Research Team
CryptoCore Group : A Threat Actor Targeting Cryptocurrency Exchanges
CageyChameleon

2020-06-24 ⋅ ClearSky ⋅ ClearSky Research Team
CryptoCore: A Threat Actor Targeting Cryptocurrency Exchanges
CageyChameleon

2020-06-24 ⋅ CyberScoop ⋅ Shannon Vavra
Hackers are still running coronavirus-related campaigns, CrowdStrike warns
TRAVELING SPIDER

2020-06-24 ⋅ Secureworks ⋅ Counter Threat Unit ResearchTeam
DropboxAES Remote Access Trojan