Malpedia Library

Click here to download all references as Bib-File.•

2021-09-15 ⋅ cyble ⋅ Cyble
APT-C-23 Using New Variant Of Android Spyware To Target Users In The Middle East

2021-09-15 ⋅ CrowdStrike ⋅ Falcon OverWatch Team
Shining a Light on DarkOxide

2021-09-15 ⋅ MikroTik ⋅ MikroTik
Mēris botnet

2021-09-15 ⋅ Microsoft ⋅ Microsoft 365 Defender Threat Intelligence Team, Microsoft Threat Intelligence Center (MSTIC)
Analyzing attacks that exploit the CVE-2021-40444 MSHTML vulnerability
Cobalt Strike

2021-09-15 ⋅ Palo Alto Networks Unit 42 ⋅ Anna Chung, Swetha Balla
Phishing Eager Travelers
Dridex

2021-09-15 ⋅ Trend Micro ⋅ Mickey Jin
Analyzing The ForcedEntry Zero-Click iPhone Exploit Used By Pegasus (CVE-2021-30860)
Chrysaor

2021-09-14 ⋅ Twitter (@siri_urz) ⋅ S!Ri
Tweet on ATOMSILO ransomware
ATOMSILO

2021-09-14 ⋅ Telekom ⋅ Thomas Barabosch
Flubot’s Smishing Campaigns under the Microscope
Anatsa FluBot

2021-09-14 ⋅ NK News ⋅ Ethan Jewell, Jeongmin Kim
North Korea-linked account poses as KBS scriptwriter to dupe DPRK watchers

2021-09-14 ⋅ Recorded Future ⋅ Insikt Group®
Full-Spectrum Cobalt Strike Detection
Cobalt Strike

2021-09-14 ⋅ Cado Security ⋅ Cado Security
TeamTNT Script Employed to Grab AWS Credentials
TeamTNT Tsunami

2021-09-14 ⋅ CrowdStrike ⋅ CrowdStrike Intelligence Team
Big Game Hunting TTPs Continue to Shift After DarkSide Pipeline Attack
BlackMatter DarkSide REvil Avaddon BlackMatter Clop Conti CryptoLocker DarkSide DoppelPaymer Hades REvil

2021-09-14 ⋅ Fortinet ⋅ John Simmons
More ProxyShell? Web Shells Lead to ZeroLogon and Application Impersonation Attacks

2021-09-14 ⋅ ZecOps ⋅ ZecOps Research Team
The Recent iOS 0-Click, CVE-2021-30860, Sounds Familiar. An Unreleased Write-up: One Year Later
Chrysaor

2021-09-14 ⋅ cyble ⋅ Cyble
APT Group Targets Indian Defense Officials Through Enhanced TTPs
Unidentified 085

2021-09-14 ⋅ McAfee ⋅ Christiaan Beek
Operation ‘Harvest’: A Deep Dive into a Long-term Campaign
MimiKatz PlugX Winnti

2021-09-14 ⋅ cyble ⋅ Cyble
Deep-dive Analysis of S.O.V.A. Android Banking Trojan
S.O.V.A.

2021-09-14 ⋅ Objective-See ⋅ Patrick Wardle
OSX.ZuRu: trojanized apps spread malware, via sponsored search results
ZuRu

2021-09-14 ⋅ CSO Online ⋅ Christopher Burgess
Russia is fully capable of shutting down cybercrime

2021-09-13 ⋅ Trend Micro ⋅ Daniel Lunghi, Jaromír Hořejší
APT-C-36 Updates Its Spam Campaign Against South American Entities With Commodity RATs
APT-C-36