Malpedia Library

Click here to download all references as Bib-File.•

2024-10-22 ⋅ NCSC UK ⋅ NCSC UK
Malware Analysis Report: Pigmy Goat
PigmyGoat

2024-10-22 ⋅ Silent Push ⋅ Silent Push
Triad Nexus: Silent Push exposes FUNNULL CDN hosting DGA domains for suspect Chinese gambling sites, investment scams, a retail phishing campaign, and a polyfill.io supply chain attack impacting 110,000+ sites

2024-10-22 ⋅ Logpoint ⋅ Swachchhanda Shrawan Poudel
Latrodectus: The Wrath of Black Widow
Latrodectus

2024-10-22 ⋅ Cisco Talos ⋅ Chetan Raghuprasad
Threat actor abuses Gophish to deliver new PowerRAT and DCRAT
PowerRAT

2024-10-22 ⋅ Twitter (@threatinsight) ⋅ Threat Insight
Twitter Thread attributing Voldemort to TA415 (APT41, BrassTyphoon)
Voldemort

2024-10-22 ⋅ Kaspersky Labs ⋅ GReAT
Grandoreiro, the global trojan with grandiose ambitions
Grandoreiro

2024-10-21 ⋅ SOCRadar ⋅ SOCRadar
Biggest Education Industry Attacks in 2024
OverFlame

2024-10-21 ⋅ VMRay ⋅ VMRay Labs Team
Latrodectus: A year in the making
Latrodectus

2024-10-19 ⋅ Elastic ⋅ Salim Bitam
Tricks and Treats: GHOSTPULSE’s new pixel- level deception
HijackLoader

2024-10-18 ⋅ Forcepoint ⋅ Mayur Sewani
Inside the Latrodectus Malware Campaign Old School Phishing Meets Innovative Payload Delivery
Latrodectus

2024-10-18 ⋅ SpyCloud ⋅ Kyla Cardona
A Deep Dive Into the Intricate Chinese Cybercrime Ecosystem

2024-10-17 ⋅ Cisco Talos ⋅ Asheer Malhotra, Dmytro Korzhevin, Vanja Svajcer, Vitor Ventura
UAT-5647 targets Ukrainian and Polish entities with RomCom malware variants
MeltingClaw ROMCOM RAT ShadyHammock RomCom

2024-10-17 ⋅ Loader Insight Agency ⋅ LIA
Correlating Vidar Stealer Build IDs Based on Loader Tasks
Lumma Stealer SmokeLoader Vidar

2024-10-17 ⋅ Microsoft Security ⋅ Microsoft Threat Intelligence
New macOS vulnerability, “HM Surf”, could lead to unauthorized data access

2024-10-17 ⋅ Hunt.io ⋅ Hunt.io
From Warm to Burned: Shedding Light on Updated WarmCookie Infrastructure
WarmCookie

2024-10-16 ⋅ BitSight ⋅ André Tavares
Exfiltration over Telegram Bots: Skidding Infostealer Logs
404 Keylogger Agent Tesla

2024-10-16 ⋅ Trend Micro ⋅ Jaromír Hořejší, Nitesh Surana
Fake LockBit, Real Damage: Ransomware Samples Abuse AWS S3 to Steal Data
BockLit

2024-10-16 ⋅ ThreatMon ⋅ Aziz Kaplan, ThreatMon, ThreatMon Malware Research Team
X-ZIGZAG Technical Malware Analysis Report
AsyncRAT X-ZIGZAG

2024-10-16 ⋅ ⋅ ASEC ⋅ ASEC
An Lab and the National Cyber Security Center (NCSC), joint report distribution and Microsoft browser 0-DAY discovery (CVE-2024-38178)

2024-10-16 ⋅ CISA ⋅ CISA
Iranian Cyber Actors’ Brute Force and Credential Access Activity Compromises Critical Infrastructure Organizations