Malpedia Library

2021-10-26 ⋅ Github (vc0RExor) ⋅ Aaron Jornet
Babuk Ransomware
Babuk

2021-10-26 ⋅ Symantec ⋅ Threat Hunter Team
Almost 100 Organizations in Brazil Targeted with Banking Trojan
bancos

2021-10-26 ⋅ ebryx ⋅ Ahmad Muneeb Khan, Farrukh Shahzad, Syed Hasan Akhtar
Unraveling Confucius’ Espionage Campaigns

2021-10-26 ⋅ DARKNET DIARIES ⋅ DARKNET DIARIES
EP 103: Cloud Hopper

2021-10-26 ⋅ Microsoft ⋅ Detection and Response Team (DART)
Protect your business from password sprays with Microsoft DART recommendations

2021-10-26 ⋅ splunk ⋅ Marcus LaFerrera
High(er) Fidelity Software Supply Chain Attack Detection

2021-10-26 ⋅ 0ffset Blog ⋅ Chuong Dong
DRIDEX: Analysing API Obfuscation Through VEH
DoppelDridex

2021-10-26 ⋅ unh4ck ⋅ Hamza OUADIA
Detecting CONTI CobaltStrike Lateral Movement Techniques - Part 1
Cobalt Strike Conti

2021-10-26 ⋅ Intezer ⋅ Twitter (IntezerLabs)
Tweet on Linux version of REvil ransomware
REvil

2021-10-26 ⋅ Kaspersky ⋅ GReAT
APT trends report Q3 2021

2021-10-26 ⋅ Recorded Future ⋅ Insikt Group®
Operation Secondary Infektion Impersonates Swedish Riksdag, Targets European Audiences

2021-10-26 ⋅ cyjax ⋅ william thomas
Mercenary APTs – An Exploration
Chrysaor

2021-10-26 ⋅ JPCERT/CC ⋅ Yuma Masubuchi
Malware WinDealer used by LuoYu Attack Group
WinDealer Red Nue

2021-10-26 ⋅ Cisco Talos ⋅ Edmund Brumaghin, Mariano Graziano, Nick Mavis
SQUIRRELWAFFLE Leverages malspam to deliver Qakbot, Cobalt Strike
Cobalt Strike QakBot Squirrelwaffle

2021-10-25 ⋅ Gigamon ⋅ Joe Slowik
Bear in the Net: A Network-Focused Perspective on Berserk Bear

2021-10-25 ⋅ KELA ⋅ Victoria Kivilevich
Will the REvil Story Finally be Over?
REvil REvil

2021-10-25 ⋅ TRUESEC ⋅ Sebastian Olsson
UAParser.js npm Package Supply Chain Attack: Impact and Response

2021-10-25 ⋅ KrebsOnSecurity ⋅ Brian Krebs
Conti Ransom Gang Starts Selling Access to Victims
Conti

2021-10-25 ⋅ FBI ⋅ FBI
CU-000153-MW: Indicators of Compromise Associated with Ranzy Locker Ransomware
ThunderX