Malpedia Library

Click here to download all references as Bib-File.•

2017-08-01 ⋅ ESET Research ⋅ Gazing at Gazer, Turla’s new second stage backdoor
Gazing at Gazer Turla’s new second stage backdoor
Turla

2017-08-01 ⋅ Malwarebytes ⋅ Malwarebytes Labs
TrickBot comes up with new tricks: attacking Outlook and browsing data
TrickBot

2017-07-31 ⋅ Palo Alto Networks Unit 42 ⋅ Bryan Lee, Robert Falcone
TwoFace Webshell: Persistent Access Point for Lateral Movement
TwoFace OilRig

2017-07-31 ⋅ Proofpoint ⋅ Darien Huss, Matthew Mesa
FIN7/Carbanak threat actor unleashes Bateleur JScript backdoor
Bateleur FIN7

2017-07-27 ⋅ Forbes ⋅ Thomas Brewster
With Fake News And Femmes Fatales, Iran's Spies Learn To Love Facebook
Charming Kitten

2017-07-27 ⋅ Security Intelligence ⋅ Limor Kessem, Shachar Gritzman
After Big Takedown Efforts, 20 More BankBot Mobile Malware Apps Make It Into Google Play
Anubis

2017-07-25 ⋅ Ars Technica ⋅ Dan Goodin
“Perverse” malware infecting hundreds of Macs remained undetected for years
FruitFly

2017-07-25 ⋅ Palo Alto Networks Unit 42 ⋅ Kaoru Hayashi
“Tick” Group Continues Attacks
Daserf Tick

2017-07-25 ⋅ Gigamon ⋅ Applied Threat Research Team
Footprints of Fin7: Tracking Actor Patterns (Part 1)
FIN7

2017-07-24 ⋅ Volexity ⋅ Volexity
Real News, Fake Flash: Mac OS X Users Targeted
Leverage

2017-07-24 ⋅ Kaspersky Labs ⋅ Noushin Shabab
Spring Dragon – Updated Activity
LOTUS PANDA

2017-07-20 ⋅ ESET Research ⋅ Frédéric Vachon, Matthieu Faou
Stantinko: A massive adware campaign operating covertly since 2012
Stantinko

2017-07-19 ⋅ SecurityWeek ⋅ Eduard Kovacs
'DarkHotel' APT Uses New Methods to Target Politicians
DarkHotel

2017-07-18 ⋅ Trend Micro ⋅ Brian Cayanan, Mohamad Mokbel, Tim Yeh
Linux Users Urged to Update as a New Threat Exploits SambaCry
ShellBind

2017-07-17 ⋅ Malwarebytes ⋅ Threat Intelligence Team
It’s baaaack: Public cyber enemy Emotet has returned
Emotet

2017-07-17 ⋅ Trend Micro ⋅ Cedric Pernet, Jordan Pan, Lenart Bermejo
Android Backdoor GhostCtrl can Silently Record Your Audio, Video, and More
GhostCtrl

2017-07-12 ⋅ Wired ⋅ Lily Hay Newman
Iranian Hackers Have Been Infiltrating Critical Infrastructure Companies
OilRig

2017-07-11 ⋅ Trend Micro ⋅ Marshall Chen, Rubio Wu
Spam Campaign Delivers Cross-platform Remote Access Trojan Adwind
AdWind

2017-07-07 ⋅ SWITCH Security Blog ⋅ Michael Hausding
94 .ch & .li domain names hijacked and used for drive-by
Neutrino

2017-07-05 ⋅ ⋅ Seebug Paper ⋅ ADLab
Trump Zombies: New IoT Zombies Attacking 'In Trump's Name'
Trump Bot