Malpedia Library

Click here to download all references as Bib-File.•

2021-05-11 ⋅ KrebsOnSecurity ⋅ Brian Krebs
A Closer Look at the DarkSide Ransomware Gang
DarkSide

2021-05-11 ⋅ Qianxin ⋅ Qi'anxin Threat Intelligence
Analysis of a series of attacks by the suspected Lazarus organization using Daewoo Shipyard as relevant bait

2021-05-10 ⋅ Cleafy ⋅ Federico Valentini, Francesco Iubatti
TeaBot: a new Android malware emerged in Italy, targets banks in Europe
Anatsa

2021-05-10 ⋅ ⋅ Anheng Threat Intelligence Center ⋅ Hunting Shadow Lab
Analysis of U.S. Oil Products Pipeline Operators Suspended by Ransomware Attacks
DarkSide

2021-05-10 ⋅ University College London ⋅ Alex Wilkinson, Emily Lewis, Toni Mlinarević
Machine Learning for Static Malware Analysis

2021-05-10 ⋅ SentinelOne ⋅ SentinelOne
Meet DarkSide and Their Ransomware – SentinelOne Customers Protected
DarkSide

2021-05-10 ⋅ POLITICO ⋅ Andrew Desiderio, Lara Seligman
Russian spy unit suspected of directed-energy attacks on U.S. personnel

2021-05-10 ⋅ DarkTracer ⋅ DarkTracer
Intelligence Report on Ransomware Gangs on the DarkWeb: List of victim organizations attacked by ransomware gangs released on the DarkWeb
RansomEXX Avaddon Babuk Clop Conti Cuba DarkSide DoppelPaymer Egregor Hades LockBit Mailto Maze MedusaLocker Mespinoza Mount Locker Nefilim Nemty Pay2Key PwndLocker RagnarLocker Ragnarok RansomEXX REvil Sekhmet SunCrypt ThunderX

2021-05-10 ⋅ ⋅ Wirtschaftswoche ⋅ Thomas Kuhn
How one of the largest hacker networks in the world was paralyzed
Emotet

2021-05-10 ⋅ Mal-Eats ⋅ mal_eats
Overview of Campo, a new attack campaign targeting Japan
AnchorDNS BazarBackdoor Cobalt Strike ISFB Phobos TrickBot Zloader

2021-05-10 ⋅ Intel 471 ⋅ Intel 471
Here’s what we know about DarkSide ransomware
DarkSide

2021-05-10 ⋅ Stratosphere Lab ⋅ Kamila Babayeva, Sebastian García
Dissecting a RAT. Analysis of the HawkShaw.
HawkShaw

2021-05-10 ⋅ ZERO.BS ⋅ ZEROBS
Cobaltstrike-Beacons analyzed
Cobalt Strike

2021-05-10 ⋅ SecurityIntelligence ⋅ Limor Kessem
Shedding Light on the DarkSide Ransomware Attack
DarkSide

2021-05-08 ⋅ Group-IB ⋅ Sergei Kokurin
When Karma Comes Back: The rise and fall of illicit cardshop breached twice in two years

2021-05-08 ⋅ Reuters ⋅ Christopher Bing, Stephanie Kelly
Cyber attack shuts down top U.S. fuel pipeline network
DarkSide

2021-05-08 ⋅ The Record ⋅ Catalin Cimpanu
SolarWinds says fewer than 100 customers were impacted by supply chain attack
SUNBURST

2021-05-07 ⋅ NCSC UK ⋅ NCSC UK
Further TTPs associated with SVR cyber actors
Sliver

2021-05-07 ⋅ Cisco Talos ⋅ Andrew Windsor, Caitlin Huey, Edmund Brumaghin
Lemon Duck spreads its wings: Actors target Microsoft Exchange servers, incorporate new TTPs
CHINACHOPPER Cobalt Strike Lemon Duck

2021-05-07 ⋅ SophosLabs Uncut ⋅ Rajesh Nataraj
New Lemon Duck variants exploiting Microsoft Exchange Server
CHINACHOPPER Cobalt Strike Lemon Duck