Malpedia Library

Click here to download all references as Bib-File.•

2021-02-17 ⋅ US Department of Defense ⋅ US Department of Justice
Three North Korean Military Hackers Indicted in Wide-Ranging Scheme to Commit Cyberattacks and Financial Crimes Across the Globe

2021-02-17 ⋅ Netresec ⋅ Erik Hjelmvik
Targeting Process for the SolarWinds Backdoor
SUNBURST

2021-02-17 ⋅ YouTube (The White House) ⋅ Anne Neuberger
Update on Investigaton on Solarwinds supply chain attack from the Deputy National Security Advisor
SUNBURST

2021-02-16 ⋅ KELA ⋅ Sharon Bitton, Victoria Kivilevich
Dark Net Markets Going Out of Business: Where are Users Headed to Next?

2021-02-16 ⋅ FireEye ⋅ Andrew Rector, Matt Bromiley, Robert Wallace
Light in the Dark: Hunting for SUNBURST
SUNBURST

2021-02-16 ⋅ The Wall Street Journal ⋅ Sara Randazzo, Tawnell D. Hobbs
Hacker Claims to Have Stolen Files Belonging to Prominent Law Firm Jones Day

2021-02-16 ⋅ Twitter (@craiu) ⋅ Costin Raiu
Twitter thread on Exaramel Linux backdoor used by Russian Group Sandworm
Exaramel

2021-02-16 ⋅ Cybereason ⋅ Tom Fakterman
Cybereason vs. NetWalker Ransomware
Mailto

2021-02-16 ⋅ Accenture ⋅ Alexandrea Berninger
Hard lessons learned: Threat intel takeaways from the community response to Solarigate
SUNBURST TEARDROP

2021-02-16 ⋅ Check Point ⋅ Check Point Research
ApoMacroSploit: Apocalyptical FUD race
BitRAT

2021-02-16 ⋅ SophosLabs Uncut ⋅ Peter Mackenzie, Tilly Travers
What to expect when you’ve been hit with Conti ransomware
Conti

2021-02-16 ⋅ SophosLabs Uncut ⋅ Michael Heller
A Conti ransomware attack day-by-day
Conti

2021-02-15 ⋅ Medium s2wlab ⋅ Sojun Ryu
Operation SyncTrek
AbaddonPOS Azorult Clop DoppelDridex DoppelPaymer Dridex PwndLocker

2021-02-15 ⋅ Wired ⋅ Andy Greenberg
France Ties Russia's Sandworm to a Multiyear Hacking Spree
Exaramel Exaramel

2021-02-15 ⋅ cyble ⋅ cybleinc
Ngrok Platform Abused by Hackers to Deliver a New Wave of Phishing Attacks

2021-02-15 ⋅ Twitter (@TheDFIRReport) ⋅ The DFIR Report
Tweet on Qakbot post infection discovery activity
QakBot

2021-02-15 ⋅ stan's blog ⋅ Stanislas Arnoud
Analysis of an APT41 rootkit

2021-02-14 ⋅ Cyware ⋅ Cyware
Hildegard: TeamTNT’s New Feature-Rich Malware Targeting Kubernetes
TeamTNT

2021-02-14 ⋅ Objective-See ⋅ Patrick Wardle
Arm'd & Dangerous malicious code, now native on apple silicon
Pirrit

2021-02-12 ⋅ Twitter (@ESETresearch) ⋅ ESET Research
A twitter thread on discussing updated attack chain of EVILNUM group and their use PYVIL malware
PyVil