Malpedia Library

Click here to download all references as Bib-File.•

2021-08-26 ⋅ Bleeping Computer ⋅ Ionut Ilascu
Ragnarok ransomware releases master decryptor after shutdown
Ragnarok

2021-08-25 ⋅ DataBreaches.net ⋅ Dissent
Advisories are published, but are enough entities reading them and taking precautions?
ALTDOS

2021-08-25 ⋅ Trend Micro ⋅ Hara Hiroaki, Ted Lee
Earth Baku An APT Group Targeting Indo-Pacific Countries With New Stealth Loaders and Backdoor
Cobalt Strike DUSTPAN SideWalk

2021-08-25 ⋅ Recorded Future ⋅ Insikt Group®
The Business of Fraud SIM Swapping

2021-08-25 ⋅ Bitdefender ⋅ Bogdan Botezatu, Cristina Vatamanu, Eduard Budaca, Victor Vrabie
FIN8 Threat Actor Goes Agile with New Sardonic Backdoor

2021-08-25 ⋅ GoggleHeadedHacker Blog ⋅ Jacob Pimental
Reverse Engineering Crypto Functions: RC4 and Salsa20
REvil

2021-08-25 ⋅ Cybleinc ⋅ cybleinc
LockFile Ransomware: Exploiting Microsoft Exchange Vulnerabilities Using ProxyShell
LockFile

2021-08-25 ⋅ Trend Micro ⋅ Bin Lin, William Gamazo Sanchez
New Campaign Sees LokiBot Delivered Via Multiple Methods
Loki Password Stealer (PWS)

2021-08-25 ⋅ RiskIQ ⋅ Jordan Herman
EITest: Linkages to the Ongoing Malware Delivery Campaign Referred to as "Gootloader"
GootLoader

2021-08-24 ⋅ Trend Micro ⋅ Hara Hiroaki, Ted Lee
Earth Baku Returns
Cobalt Strike CROSSWALK DUSTPAN SideWalk

2021-08-24 ⋅ ⋅ Basque Cybersecurity Centre ⋅ Basque Cybersecurity Centre
VIRLOCK
VirLock

2021-08-24 ⋅ KELA ⋅ KELA Cyber Intelligence Center
LockBit 2.0 Interview with Russian OSINT
LockBit

2021-08-24 ⋅ cyble ⋅ Cyble
A Deep-dive Analysis of KARMA Ransomware
Karma

2021-08-24 ⋅ Vice Motherboard ⋅ Joseph Cox
How Data Brokers Sell Access to the Backbone of the Internet

2021-08-24 ⋅ ESET Research ⋅ Mathieu Tartare, Thibaut Passilly
The SideWalk may be as dangerous as the CROSSWALK
Cobalt Strike CROSSWALK SideWalk SparklingGoblin

2021-08-24 ⋅ Volexity ⋅ Damien Cash, Josh Grunzweig, Steven Adair, Thomas Lancaster
North Korean BLUELIGHT Special: InkySquid Deploys RokRAT
RokRAT

2021-08-24 ⋅ Radware ⋅ Radware
Dark.IoT Botnet Realtek AP-Router SDK Vulnerability CVE-2021-35395
Dark Mirai

2021-08-24 ⋅ Kaspersky ⋅ Igor Golovin
Triada Trojan in WhatsApp MOD
Triada

2021-08-24 ⋅ Palo Alto Networks Unit 42 ⋅ Doel Santos, Ruchna Nigam
Ransomware Groups to Watch: Emerging Threats
HelloKitty AvosLocker HelloKitty Hive LockBit

2021-08-24 ⋅ CitizenLab ⋅ Ali Abdulemam, Bill Marczak, John Scott-Railton, Kristin Berdan, Noura Al-Jizawi, Ron Deibert, Siena Anstis
From Pearl to Pegasus Bahraini Government Hacks Activists with NSO Group Zero-Click iPhone Exploits
Chrysaor