Malpedia Library

Click here to download all references as Bib-File.•

2021-06-08 ⋅ Medium BI.ZONE ⋅ Maxim Suhanov
Measured Boot and Malware Signatures: exploring two vulnerabilities found in the Windows loader

2021-06-08 ⋅ The Record ⋅ Catalin Cimpanu
Microsoft patches six Windows zero-days, including a commercial exploit

2021-06-08 ⋅ Intel 471 ⋅ Intel 471
The blurry boundaries between nation-state actors and the cybercrime underground
Dridex Gameover P2P

2021-06-08 ⋅ Kaspersky ⋅ Alexey Kulaev, Boris Larin, Costin Raiu
PuzzleMaker attacks with Chrome zero-day exploit chain
Chainshot puzzlemaker

2021-06-08 ⋅ SentinelOne ⋅ Juan Andrés Guerrero-Saade
ThunderCats Hack the FSB | Your Taxes Didn’t Pay For This Op
Mail-O SManager Tmanger

2021-06-08 ⋅ CrowdStrike ⋅ Patrick Bennett
UAL Thank Us Later: Leveraging User Access Logging for Forensic Investigations

2021-06-08 ⋅ Palo Alto Networks Unit 42 ⋅ Nathaniel Quist
TeamTNT Using WatchDog TTPs to Expand Its Cryptojacking Footprint

2021-06-08 ⋅ Advanced Intelligence ⋅ Vitali Kremez, Yelisey Boguslavskiy
From QBot...with REvil Ransomware: Initial Attack Exposure of JBS
QakBot REvil

2021-06-08 ⋅ CrowdStrike ⋅ Hanno Heinrichs, Heather Smith
Another Brick in the Wall: eCrime Groups Leverage SonicWall VPN Vulnerability

2021-06-07 ⋅ ATOS ⋅ Loïc Castel
Avaddon Ransomware Analysis
Avaddon

2021-06-07 ⋅ Graphika ⋅ The Graphika Team
Posing as Patriots

2021-06-07 ⋅ Wired ⋅ Andy Greenberg
Ransomware Struck Another Pipeline Firm—and 70GB of Data Leaked

2021-06-07 ⋅ Gdata ⋅ Karsten Hahn
Malware family naming hell is our own fault

2021-06-07 ⋅ Medium walmartglobaltech ⋅ Jason Reaves, Joshua Platt
Inside the SystemBC Malware-As-A-Service
Ryuk SystemBC TrickBot

2021-06-05 ⋅ Cybleinc ⋅ cybleinc
Prometheus: An Emerging Ransomware Group Using Thanos Ransomware To Target Organizations
Hakbit

2021-06-05 ⋅ Anchored Narratives on Threat Intelligence and Geopolitics ⋅ RJM
Geopolitical nation-state threat actor overview May 2021

2021-06-04 ⋅ AhnLab ⋅ AhnLab ASEC Analysis Team
APT Attacks on Domestic Companies Using Library Files

2021-06-04 ⋅ RiskIQ ⋅ Team RiskIQ
The Sysrv-hello Cryptojacking Botnet: Here’s What’s New
Sysrv-hello

2021-06-04 ⋅ ⋅ Security Service of Ukraine ⋅ Security Service of Ukraine
The SBU blocked a mass cyberattack by Russian special services on the computer networks of the Ukrainian authorities

2021-06-04 ⋅ Inky ⋅ Roger Kay
Colonial Pipeline Ransomware Hack Unleashes Flood of Related Phishing Attempts
Cobalt Strike