Malpedia Library

Click here to download all references as Bib-File.•

2020-05-21 ⋅ Bitdefender ⋅ Bogdan Rusu, Liviu Arsene
Iranian Chafer APT Targeted Air Transportation and Government in Kuwait and Saudi Arabia
MimiKatz Remexi

2020-05-21 ⋅ ESET Research ⋅ Martin Smolár, Mathieu Tartare
No “Game over” for the Winnti Group
ACEHASH HTran MimiKatz PipeMon

2020-05-21 ⋅ VMWare Carbon Black ⋅ Jared Myers
TAU Technical Report: New Attack Combines TinyPOS With Living-off-the-Land Techniques for Scraping Credit Card Data
AbaddonPOS

2020-05-20 ⋅ Zscaler ⋅ Amandeep Kumar, Rohit Chaturvedi
Latest Version of Amadey Introduces Screen Capturing and Pushes the Remcos RAT
Amadey Remcos

2020-05-20 ⋅ Medium Asuna Amawaka ⋅ Asuna Amawaka
What happened between the BigBadWolf and the Tiger?
Ghost RAT

2020-05-20 ⋅ SentinelOne ⋅ Jim Walter
Why On-Device Detection Matters: New Ramsay Trojan Targets Air-Gapped Networks
Ramsay

2020-05-20 ⋅ PTSecurity ⋅ PT ESC Threat Intelligence
Operation TA505: how we analyzed new tools from the creators of the Dridex trojan, Locky ransomware, and Neutrino botnet
FlawedAmmyy

2020-05-20 ⋅ Proofpoint ⋅ Dennis Schwarz, Matthew Mesa, Proofpoint Threat Research Team
ZLoader Loads Again: New ZLoader Variant Returns
Zloader

2020-05-19 ⋅ zero2auto ⋅ Vitali Kremez
Netwalker Ransomware - From Static Reverse Engineering to Automatic Extraction
Mailto

2020-05-19 ⋅ Hornetsecurity ⋅ Security Lab
Information Stealer Campaign Targeting German HR Contacts
LALALA Stealer

2020-05-19 ⋅ Symantec ⋅ Critical Attack Discovery and Intelligence Team
Sophisticated Espionage Group Turns Attention to Telecom Providers in South Asia
ISMAgent ISMDoor

2020-05-18 ⋅ Threatpost ⋅ Tara Seals
Ransomware Gang Arrested for Spreading Locky to Hospitals
Locky

2020-05-18 ⋅ ZDNet ⋅ Catalin Cimpanu
FBI: ProLock ransomware gains access to victim networks via Qakbot infections
PwndLocker

2020-05-18 ⋅ One Night in Norfolk ⋅ Kevin Perlow
Looking Back at LiteDuke
LiteDuke

2020-05-17 ⋅ CrowdStrike ⋅ satoshi tanda
CrowdStrike Falcon Detects Kernel Attacks Exploiting Vulnerable Dell Driver (CVE-2021-21551)

2020-05-16 ⋅ atdotde ⋅ Robert Helling
High Performance Hackers
Loerbas

2020-05-16 ⋅ Cado Security ⋅ Chris Doman, James Campbell
Recent Attacks Against Supercomputers
Loerbas

2020-05-15 ⋅ SentinelOne ⋅ Phil Stokes
A Guide to macOS Threat Hunting and Incident Response

2020-05-15 ⋅ MalwareLab.pl ⋅ Maciej Kotowicz
In depth analysis of Lazarus validator

2020-05-15 ⋅ Twitter (@nunohaien) ⋅ Tillmann Werner
Twitter Thread on attacks on high-performance computing labs
Loerbas