Malpedia Library

Click here to download all references as Bib-File.•

2021-11-18 ⋅ Group-IB ⋅ Ivan Pisarev
The awakening: Group-IB uncovers new corporate espionage attacks by RedCurl

2021-11-17 ⋅ Group-IB ⋅ Group-IB
RedCurl: The awakening

2021-11-10 ⋅ Group-IB ⋅ Group-IB
REDCURL: The awakening
RedCurl

2021-11-03 ⋅ Group-IB ⋅ Andrey Zhdanov
The Darker Things BlackMatter and their victims
BlackMatter DarkSide BlackMatter DarkSide

2021-10-28 ⋅ Group-IB ⋅ Ruslan Chebesov, Sergey Kokurin
Cannibal Carders

2021-09-17 ⋅ Group-IB ⋅ Evgeny Egorov, Yakov Kravtsov
Scamdemic outbreak Scammers attack users in Middle Eastern countries

2021-09-16 ⋅ Group-IB ⋅ Ivan Lebedev, Reza Rafati
RUNLIR - phishing campaign targeting Netherlands

2021-08-06 ⋅ Group-IB ⋅ Sergey Kokurin
Bold ad campaign

2021-08-06 ⋅ Group-IB ⋅ Andrey Zhdanov
It's alive! The story behind the BlackMatter ransomware strain
BlackMatter DarkSide BlackMatter DarkSide

2021-08-05 ⋅ Group-IB ⋅ Nikita Rostovcev, Viktor Okorokov
Prometheus TDS The key to success for Campo Loader, Hancitor, IcedID, and QBot
Prometheus Backdoor Buer campoloader Hancitor IcedID QakBot

2021-08-03 ⋅ Group-IB ⋅ Anastasia Tikhonova
The Art of Cyberwarfare: Chinese APTs attack Russia
Albaniiutas TaskMasters

2021-08-03 ⋅ Group-IB ⋅ Anastasia Tikhonova, Dmitry Kupin
The Art of Cyberwarfare Chinese APTs attack Russia
Albaniiutas Mail-O SManager TA428

2021-07-22 ⋅ Group-IB ⋅ Anton Ushakov, Roberto Martinez
The Fraud Family Fraud-as-a-Service operation targeting Dutch residents

2021-07-06 ⋅ Group-IB ⋅ Dmitry Volkov, Stephen Kavanagh
Operation Lyrebird: Group-IB assists INTERPOL in identifying suspect behind numerous cybercrimes worldwide

2021-07-02 ⋅ Group-IB ⋅ Group-IB
The Brothers Grim - The reversing tale of GrimAgent malware used by Ryuk
GRIMAGENT

2021-07-02 ⋅ Group-IB ⋅ Albert Priego
The Brothers Grim - The reversing tale of GrimAgent malware used by Ryuk
GRIMAGENT

2021-06-30 ⋅ Group-IB ⋅ Oleg Skulkin
REvil Twins Deep Dive into Prolific RaaS Affiliates' TTPs
Cobalt Strike REvil

2021-06-10 ⋅ Group-IB ⋅ Nikita Rostovcev
Big airline heist APT41 likely behind massive supply chain attack
Cobalt Strike

2021-06-03 ⋅ Group-IB ⋅ Nikita Rostovtsev
FontPack: A dangerous update Attribution secrets: Who is behind stealing credentials and bank card data by asking to install fake Flash Player, browser or font updates?

2021-05-08 ⋅ Group-IB ⋅ Sergei Kokurin
When Karma Comes Back: The rise and fall of illicit cardshop breached twice in two years