Malpedia Library

Click here to download all references as Bib-File.•

2021-02-12 ⋅ Malwarebytes ⋅ Threat Intelligence Team
Malvertising campaign on PornHub and other top adult brands exposes users to tech support scams

2021-02-12 ⋅ InfoSec Handlers Diary Blog ⋅ Xavier Mertens
AgentTesla Dropped Through Automatic Click in Microsoft Help File
Agent Tesla

2021-02-11 ⋅ Cyber And Ramen blog ⋅ Mike R
BlackTech Updates Elf-Plead Backdoor
PLEAD

2021-02-11 ⋅ Proofpoint ⋅ Proofpoint Threat Research Team
A Baza Valentine’s Day
BazarBackdoor

2021-02-11 ⋅ AGARI ⋅ Crane Hassold
Cosmic Lynx Returns in 2021 with Updated Tricks

2021-02-11 ⋅ US-CERT ⋅ CISA, FBI
Alert (AA21-042A): Compromise of U.S. Water Treatment Facility

2021-02-11 ⋅ Microsoft ⋅ Detection and Response Team (DART), Microsoft 365 Defender Research Team
Web shell attacks continue to rise

2021-02-10 ⋅ Anomali ⋅ Anomali Threat Research, Gage Mele, Winston Marydasan, Yury Polozov
Probable Iranian Cyber Actors, Static Kitten, Conducting Cyberespionage Campaign Targeting UAE and Kuwait Government Agencies

2021-02-10 ⋅ Seguranca Informatica ⋅ Pedro Tavares
Lampion trojan disseminated in Portugal using COVID-19 template
lampion

2021-02-10 ⋅ Anheng Threat Intelligence Center ⋅ Hunting Shadow Lab
Windows kernel zero-day exploit (CVE-2021-1732) is used by BITTER APT in targeted attack

2021-02-10 ⋅ Cado Security ⋅ Christopher Doman
Punk Kitty Ransom - Analysing HelloKitty Ransomware Attacks
HelloKitty

2021-02-09 ⋅ Stranded on Pylos Blog ⋅ Joe Slowik
Water, Water Everywhere – But Nary a Hacker to Blame

2021-02-09 ⋅ Microsoft ⋅ Microsoft
3 Ways to Mitigate Risk When Using Private Package Feeds

2021-02-09 ⋅ Microsoft ⋅ MSRC Team
Windows Win32k Elevation of Privilege Vulnerability CVE-2021-1732 (exploited ITW)

2021-02-09 ⋅ Microsoft ⋅ MSRC Team
Multiple Security Updates Affecting TCP/IP:  CVE-2021-24074, CVE-2021-24094, and CVE-2021-24086

2021-02-09 ⋅ Trend Micro ⋅ Alfredo Oliveira, David Fiser
Threat actors now target Docker via container escape features

2021-02-09 ⋅ Securehat ⋅ Securehat
Extracting the Cobalt Strike Config from a TEARDROP Loader
Cobalt Strike TEARDROP

2021-02-09 ⋅ Talos ⋅ Chris Neal, Vitor Ventura, Warren Mercer
Kasablanka Group's LodaRAT improves espionage capabilities on Android and Windows
Loda

2021-02-09 ⋅ Cofense ⋅ Zachary Bailey
BazarBackdoor’s Stealthy Infiltration Evades Multiple SEGs
BazarBackdoor

2021-02-08 ⋅ Arsenal Consulting ⋅ Arsenal Consulting
National Investigation Agency VS Sudhir Pralhad Dhawale & others Report 1
NetWire RC