Malpedia Library

Click here to download all references as Bib-File.•

2024-06-12 ⋅ Symantec ⋅ Symantec Threat Hunter Team
Ransomware Attackers May Have Used Privilege Escalation Vulnerability as Zero-day
Black Basta

2024-06-12 ⋅ Gdata ⋅ Anna Lvova, Karsten Hahn
New backdoor BadSpace delivered by high-ranking infected websites
WarmCookie

2024-06-11 ⋅ Kroll ⋅ George Glass, Keith Wojcieszek, Laurie Iacono
PLAY Ransomware Group Gains Access via Citrix Bleed Vulnerability
PLAY

2024-06-10 ⋅ The Hacker News ⋅ Ravie Lakshmanan
More_eggs Malware Disguised as Resumes Targets Recruiters in Phishing Attack
More_eggs

2024-06-09 ⋅ XLab ⋅ Acey9, Alex.Turing
New Threat: A Deep Dive Into the Zergeca Botnet
Zergeca

2024-06-07 ⋅ The Record ⋅ Daryna Antoniuk
Russia-linked Vermin hackers target Ukrainian military in new espionage campaign
UAC-0020

2024-06-07 ⋅ Security Affairs ⋅ Pierluigi Paganini
Pandabuy was extorted twice by the same Threat Actor
IntelBroker

2024-06-06 ⋅ Blackberry ⋅ Dmitry Melikov
Kimsuky is targeting an arms manufacturer in Europe.
NikiHTTP

2024-06-06 ⋅ Morphisec ⋅ Arnold Osipov
Howling at the Inbox: Sticky Werewolf’s Latest Malicious Aviation Attacks
Angry Likho

2024-06-06 ⋅ Bleeping Computer ⋅ Sergiu Gatlan
New Gitloker attacks wipe GitHub repos in extortion scheme
Gitloker

2024-06-06 ⋅ Hunt.io ⋅ Hunt.io
Tracking LightSpy: Certificates as Windows into Adversary Behavior
lightSpy

2024-06-05 ⋅ ⋅ LAC ⋅ Yoshihiro Ishikawa
Thumtais, a malware targeting Japanese organizations
EagerBee

2024-06-05 ⋅ Mandiant ⋅ Jamie Collier, Michelle Cantos
Phishing for Gold: Cyber Threats Facing the 2024 Paris Olympics
Callisto

2024-06-05 ⋅ QuoIntelligence ⋅ Alixia Clarisse Rutayisire
European Election Security At Risk: A Detailed Analysis of State-Sponsored, eCrime, and Hacktivist Threats
Dragonbridge

2024-06-05 ⋅ ⋅ Cert-UA ⋅ Cert-UA
UAC-0020 (Vermin) attacks the Defense Forces of Ukraine using the SPECTR SPZ in tandem with the legitimate SyncThing ("SickSync" campaign) (CERT-UA#9934)
UAC-0020

2024-06-05 ⋅ Cisco Talos ⋅ Cisco Talos
DarkGate switches up its tactics with new payload, email templates
DarkGate

2024-06-04 ⋅ ⋅ Cert-UA ⋅ Cert-UA
UAC-0200: Targeted cyberattacks using DarkCrystal RAT and Signal as a trusted distribution vehicle (CERT-UA#9918)
DCRat

2024-06-03 ⋅ SpyCloud ⋅ James
Reversing Atomic macOS Stealer: Binaries, Backdoors & Browser Theft
AMOS

2024-05-31 ⋅ TEHTRIS ⋅ TEHTRIS
Ransomware spotted in active development phase: a successful early detection operation
CashRansomware

2024-05-31 ⋅ Cybersecurity Insiders ⋅ Bogdan Glushko
Proven Data Restores PowerHost’s VMware Backups After SEXi Ransomware Attack
SEXi SEXi