Malpedia Library

Click here to download all references as Bib-File.•

2021-11-18 ⋅ US Department of Justice ⋅ Department of Justice
Two Iranian Nationals Charged for Cyber-Enabled Disinformation and Threat Campaign Designed to Influence the 2020 U.S. Presidential Election ( Seyyed Mohammad Hosein Musa Kazemi & Sajjad Kashian )

2021-11-18 ⋅ US Department of Justice ⋅ Department of Justice
Indictment of Seyyed Mohammad Hosein Musa Kazemi

2021-11-18 ⋅ U.S. Department of the Treasury ⋅ U.S. Department of the Treasury
Treasury Sanctions Iran Cyber Actors for Attempting to Influence the 2020 U.S. Presidential Election

2021-11-18 ⋅ Elliptic ⋅ Elliptic Intel
Conti Ransomware Nets at Least $25.5 Million in Four Months
Conti

2021-11-18 ⋅ eSentire ⋅ eSentire
Emotet Activity Identified
Emotet

2021-11-17 ⋅ Black Hills Information Security ⋅ Kyle Avery
DNS Over HTTPS for Cobalt Strike
Cobalt Strike

2021-11-17 ⋅ Infoblox ⋅ Gaetano Pellegrino
Deep Analysis of a Recent Lokibot Attack
Loki Password Stealer (PWS)

2021-11-17 ⋅ CISA ⋅ Australian Cyber Security Centre (ACSC), CISA, FBI, NCSC UK
Alert (AA21-321A): Iranian Government-Sponsored APT Cyber Actors Exploiting Microsoft Exchange and Fortinet Vulnerabilities in Furtherance of Malicious Activities

2021-11-17 ⋅ ARMOR ⋅ Amer Elsad
Astaroth: Banking Trojan
Astaroth

2021-11-17 ⋅ Github (cube0x0) ⋅ cube0x0
GitHub - cube0x0 / SharpMapExec
SharpMapExec

2021-11-17 ⋅ Twitter (@Unit42_Intel) ⋅ Unit 42
Tweet on Matanbuchus Loader used to deliver Qakbot (tag obama128b) and follow-up CobaltStrike
Cobalt Strike QakBot

2021-11-17 ⋅ CrowdStrike ⋅ Liviu Arsene, Sarang Sonawane, Thomas Moses
Ransomware (R)evolution Plagues Organizations, But CrowdStrike Protection Never Wavers
LockBit

2021-11-17 ⋅ Group-IB ⋅ Group-IB
RedCurl: The awakening

2021-11-17 ⋅ CISA ⋅ CISA
Cybersecurity Incident & Vulnerability Response Playbooks

2021-11-17 ⋅ Microsoft ⋅ Pete Bryan
Creating your first Microsoft Sentinel Notebook

2021-11-17 ⋅ MalwareTech ⋅ Marcus Hutchins
An in-depth look at hacking back, active defense, and cyber letters of marque

2021-11-17 ⋅ Medium ThreatMiner ⋅ ThreatMiner
Android Trojan Targeting Korean Demographic using GitHub for C2
Unidentified APK 006

2021-11-17 ⋅ Mandiant ⋅ Joshua Goddard
ProxyNoShell: A Change in Tactics Exploiting ProxyShell Vulnerabilities

2021-11-17 ⋅ IBM ⋅ Shahar Tavor
BrazKing Android Malware Upgraded and Targeting Brazilian Banks
PixStealer

2021-11-17 ⋅ ⋅ Investigative reporting project Italy ⋅ Lorenzo Bagnoli, Riccardo Coluccini
Sorveglianza: l’azienda italiana che vuole sfidare i colossi NSO e Palantir
Chrysaor