Malpedia Library

Click here to download all references as Bib-File.•

2024-01-30 ⋅ AT&T Cybersecurity ⋅ Peter Boyle
DarkGate malware delivered via Microsoft Teams - detection and response
DarkGate

2024-01-24 ⋅ Spamhaus ⋅ Spamhaus Team
Toot about Hornet Stealer

2024-01-19 ⋅ Phylum ⋅ Phylum Research Team
npm Package Found Delivering Sophisticated RAT
Unidentified 113 (RAT)

2024-01-19 ⋅ Microsoft ⋅ MSRC Team
Microsoft Actions Following Attack by Nation State Actor Midnight Blizzard

2024-01-17 ⋅ splunk ⋅ Splunk Threat Research Team
Enter The Gates: An Analysis of the DarkGate AutoIt Loader
DarkGate

2024-01-11 ⋅ SecurityScorecard ⋅ SecurityScorecard STRIKE Team
Volt Typhoon Compromises 30% of Cisco RV320/325 Devices in 37 Days

2024-01-10 ⋅ SecurityScorecard ⋅ STRIKE Team
Volt Typhoon Compromises 30% of Cisco RV320/325 Devices in 37 Days
KV

2024-01-09 ⋅ Avast Decoded ⋅ Threat Research Team
Avast Updates Babuk Ransomware Decryptor in Cooperation with Cisco Talos and Dutch Police
Babuk

2024-01-05 ⋅ HUNT & HACKETT ⋅ Hunt & Hackett Research Team
Turkish espionage campaigns in the Netherlands
SnappyTCP

2024-01-05 ⋅ VMRay ⋅ VMRay Labs Team
DarkGate from AutoIT to Shellcode Execution
DarkGate

2023-12-19 ⋅ Symantec ⋅ Symantec Threat Hunter Team
Seedworm: Iranian Hackers Target Telecoms Orgs in North and East Africa
MuddyC2Go

2023-12-15 ⋅ ⋅ Gatewatcher ⋅ Gatewatcher
Utilisation de faux profils Steam : Vidar Stealer prend les commandes
Vidar

2023-12-13 ⋅ Fortinet ⋅ Amey Gat, Angelo Cris Deveraturda, Hongkei Chan, Jared Betts, Jayesh Zala, John Simmons, Ken Evans, Mark Robson
TeamCity Intrusion Saga: APT29 Suspected Among the Attackers Exploiting CVE-2023-42793
GraphDrop

2023-12-13 ⋅ CISA ⋅ CISA
Russian Foreign Intelligence Service (SVR) Exploiting JetBrains TeamCity CVE Globally
GraphDrop

2023-12-06 ⋅ splunk ⋅ Splunk Threat Research Team
Unmasking the Enigma: A Historical Dive into the World of PlugX Malware
PlugX

2023-12-05 ⋅ Proofpoint ⋅ Crista Giering, Greg Lesnewich, Proofpoint Threat Research Team
TA422’s Dedicated Exploitation Loop—the Same Week After Week

2023-12-03 ⋅ Medium OSINT Team ⋅ Criminal IP
SkidSec Hacker Group Announces Plans to Spread North Korean Propaganda Through Hacked Printers in South Korea
SkidSec

2023-11-30 ⋅ Blackberry ⋅ BlackBerry Research & Intelligence Team, Dmitry Bestuzhev
AeroBlade on the Hunt Targeting the U.S. Aerospace Industry
AeroBlade

2023-11-13 ⋅ Twitter (@malwrhunterteam) ⋅ MalwareHunterTeam
Tweet on Qilin Linux Locker
Qilin

2023-11-13 ⋅ Twitter (@malwrhunterteam) ⋅ MalwareHunterTeam
Tweet on Linux version of Rhysida
Rhysida