Malpedia Library

Click here to download all references as Bib-File.•

2021-04-27 ⋅ Vice ⋅ Joseph Cox
'Cock.li' Admin Says He’s Not Surprised Russian Intelligence Uses His Site

2021-04-27 ⋅ Medium Cedric Owens ⋅ Cedric Owens
macOS Gatekeeper Bypass (2021 Edition)
Shlayer

2021-04-27 ⋅ DomainTools ⋅ Chad Anderson
Winter Vivern: A Look At Re-Crafted Government MalDocs Targeting Multiple Languages
Winter Vivern

2021-04-27 ⋅ FireEye ⋅ Doug Bienstock
Abusing Replication: Stealing AD FS Secrets Over the Network

2021-04-26 ⋅ CoveWare ⋅ CoveWare
Ransomware Attack Vectors Shift as New Software Vulnerability Exploits Abound
Avaddon Clop Conti DarkSide Egregor LockBit Mailto Phobos REvil Ryuk SunCrypt

2021-04-26 ⋅ Juniper ⋅ Asher Langton
Linux Servers Hijacked to Implant SSH Backdoor

2021-04-26 ⋅ Jamf Blog ⋅ Jaron Bradley
Shlayer malware abusing Gatekeeper bypass on macOS
Shlayer

2021-04-26 ⋅ Objective-See ⋅ Patrick Wardle
All Your Macs Are Belong To Us: bypassing macOS's file quarantine, gatekeeper, and notarization requirements
Shlayer

2021-04-26 ⋅ nviso ⋅ Maxime Thiebaut
Anatomy of Cobalt Strike’s DLL Stager
Cobalt Strike

2021-04-26 ⋅ getrevue ⋅ Twitter (@80vul)
Hunting Cobalt Strike DNS redirectors by using ZoomEye
Cobalt Strike

2021-04-26 ⋅ CISA ⋅ CISA, Department of Homeland Security, FBI
Russian Foreign Intelligence Service (SVR)Cyber Operations: Trends and Best Practices for Network Defenders
elf.wellmess WellMess

2021-04-25 ⋅ The Record ⋅ Catalin Cimpanu
Hacking campaign targets FileZen file-sharing network appliances

2021-04-25 ⋅ Vulnerability.ch Blog ⋅ Corsin Camichel
Ransomware and Data Leak Site Publication Time Analysis
Avaddon Babuk Clop Conti DarkSide DoppelPaymer Mespinoza Nefilim REvil

2021-04-25 ⋅ Nightwatch Cybersecurity ⋅ Nightwatch Cybersecurity
Supply Chain Attacks via GitHub.com Releases

2021-04-25 ⋅ wire ⋅ Brian Barrett
VPN Hacks Are a Slow-Motion Disaster

2021-04-24 ⋅ xorl %eax, %eax ⋅ Anastasios Pingios
North Korea (DPRK) Cyber Operations Groups

2021-04-24 ⋅ ⋅ Non-offensive security ⋅ Non-offensive security team
Detect Cobalt Strike server through DNS protocol
Cobalt Strike

2021-04-24 ⋅ Bleeping Computer ⋅ Ax Sharma
HashiCorp is the latest victim of Codecov supply-chain attack

2021-04-24 ⋅ fumik0 blog ⋅ fumko
Anatomy of a simple and popular packer

2021-04-24 ⋅ Medium lordx64 ⋅ Taha Karim
Initial analysis of PasswordState supply chain attack backdoor code