Malpedia Library

Click here to download all references as Bib-File.•

2024-10-24 ⋅ RedPacket Security ⋅ RedPacket Security
[APT73] – Ransomware Victim: modplan[.]co[.]uk
APT73

2024-10-24 ⋅ RedPacket Security ⋅ RedPacket Security
[APT73] – Ransomware Victim: mgfsourcing[.]com
APT73

2024-10-24 ⋅ Seqrite ⋅ Subhajeet Singha
Operation Cobalt Whisper: Threat Actor Targets Multiple Industries Across Hong Kong and Pakistan
Cobalt Strike Operation Cobalt Whisper

2024-10-24 ⋅ Datadog ⋅ Datadog
Tenacious Pungsan: A DPRK threat actor linked to Contagious Interview
BeaverTail InvisibleFerret

2024-10-24 ⋅ Arctic Wolf ⋅ Akshay Suthar, Stefan Hostetler, Steven Campbell
Arctic Wolf Labs Observes Increased Fog and Akira Ransomware Activity Linked to SonicWall SSL VPN
Akira Akira

2024-10-24 ⋅ Hunt.io ⋅ Hunt.io
Rekoobe Backdoor Discovered in Open Directory, Possibly Targeting TradingView Users
Rekoobe

2024-10-23 ⋅ Forescout ⋅ Vedere Labs
ICS Threats: Malware Targeting OT? It’s More Common Than You Think
Aisuru

2024-10-23 ⋅ Cyber Press ⋅ Anupriya
DarkRaaS ransomware Group Allegedly Selling Global Intelligence Data
DarkRaaS

2024-10-23 ⋅ ThreatBook ⋅ ThreatBook
Lazarus' Espionage-related Cryptocurrency Activities Remain Active, With A Significant Amount of Assets Still in Circulation

2024-10-23 ⋅ ANY.RUN ⋅ ANY.RUN, Mostafa ElSheimy
DarkComet RAT: Technical Analysis of Attack Chain
DarkComet

2024-10-23 ⋅ Kaspersky Labs ⋅ Boris Larin
The Crypto Game of Lazarus APT: Investors vs. Zero-days

2024-10-23 ⋅ Cisco Talos ⋅ Edmund Brumaghin, Holger Unterbrink, Jordyn Dunk, Nicole Hoffman
Highlighting TA866/Asylum Ambuscade Activity Since 2021
WasabiSeed Cobalt Strike csharp-streamer RAT Resident Rhadamanthys WarmCookie

2024-10-23 ⋅ Cisco Talos ⋅ Edmund Brumaghin, Holger Unterbrink, Jordyn Dunk, Nicole Hoffman
Threat Spotlight: WarmCookie/BadSpace
Cobalt Strike csharp-streamer RAT WarmCookie

2024-10-23 ⋅ Trend Micro ⋅ Bren Matthew Ebriega, Buddy Tancio, Mohamed Fahmy
Unmasking Prometei: A Deep Dive Into Our MXDR Findings
Prometei

2024-10-22 ⋅ NCSC UK ⋅ NCSC UK
Malware Analysis Report: Pigmy Goat
PigmyGoat

2024-10-22 ⋅ Airbus ⋅ Adams Kone
Incident Response: Analysis of recent version of BRC4
Brute Ratel C4

2024-10-22 ⋅ Silent Push ⋅ Silent Push
Triad Nexus: Silent Push exposes FUNNULL CDN hosting DGA domains for suspect Chinese gambling sites, investment scams, a retail phishing campaign, and a polyfill.io supply chain attack impacting 110,000+ sites

2024-10-22 ⋅ Logpoint ⋅ Swachchhanda Shrawan Poudel
Latrodectus: The Wrath of Black Widow
Latrodectus

2024-10-22 ⋅ Kaspersky Labs ⋅ GReAT
Grandoreiro, the global trojan with grandiose ambitions
Grandoreiro

2024-10-21 ⋅ SOCRadar ⋅ SOCRadar
Biggest Education Industry Attacks in 2024
OverFlame