Malpedia Library

Click here to download all references as Bib-File.•

2021-08-24 ⋅ Bleeping Computer ⋅ Lawrence Abrams
Ransomware gang's script shows exactly the files they're after
Mespinoza

2021-08-24 ⋅ KELA ⋅ KELA Cyber Intelligence Center
LockBit 2.0 Interview with Russian OSINT
LockBit

2021-08-24 ⋅ cyble ⋅ Cyble
A Deep-dive Analysis of KARMA Ransomware
Karma

2021-08-24 ⋅ Vice Motherboard ⋅ Joseph Cox
How Data Brokers Sell Access to the Backbone of the Internet

2021-08-24 ⋅ ESET Research ⋅ Mathieu Tartare, Thibaut Passilly
The SideWalk may be as dangerous as the CROSSWALK
Cobalt Strike CROSSWALK SideWalk SparklingGoblin

2021-08-24 ⋅ Volexity ⋅ Damien Cash, Josh Grunzweig, Steven Adair, Thomas Lancaster
North Korean BLUELIGHT Special: InkySquid Deploys RokRAT
RokRAT

2021-08-24 ⋅ Radware ⋅ Radware
Dark.IoT Botnet Realtek AP-Router SDK Vulnerability CVE-2021-35395
Dark Mirai

2021-08-24 ⋅ Kaspersky ⋅ Igor Golovin
Triada Trojan in WhatsApp MOD
Triada

2021-08-24 ⋅ Palo Alto Networks Unit 42 ⋅ Doel Santos, Ruchna Nigam
Ransomware Groups to Watch: Emerging Threats
HelloKitty AvosLocker HelloKitty Hive LockBit

2021-08-24 ⋅ CitizenLab ⋅ Ali Abdulemam, Bill Marczak, John Scott-Railton, Kristin Berdan, Noura Al-Jizawi, Ron Deibert, Siena Anstis
From Pearl to Pegasus Bahraini Government Hacks Activists with NSO Group Zero-Click iPhone Exploits
Chrysaor

2021-08-23 ⋅ SentinelOne ⋅ Joey Chen, Yi-Jhen Hsieh
ShadowPad: the Masterpiece of Privately Sold Malware in Chinese Espionage
PlugX ShadowPad

2021-08-23 ⋅ Sophos SecOps ⋅ Greg Iddon
ProxyShell vulnerabilities in Microsoft Exchange: What to do
LockFile

2021-08-23 ⋅ InQuest ⋅ Dmitry Melikov
Kimsuky Espionage Campaign
Kimsuky

2021-08-23 ⋅ Youtube (SANS Digital Forensics and Incident Response) ⋅ Chad Tilbury
Keynote: Cobalt Strike Threat Hunting
Cobalt Strike

2021-08-23 ⋅ AT&T ⋅ Fernando Dominguez
PRISM attacks fly under the radar
PRISM

2021-08-23 ⋅ Intel 471 ⋅ Intel 471
Here's how to guard your enterprise against ShinyHunters

2021-08-23 ⋅ Sentinel LABS ⋅ Jim Walter, Juan Andrés Guerrero-Saade
Hive Attacks | Analysis of the Human-Operated Ransomware Targeting Healthcare
Hive

2021-08-23 ⋅ Netskope ⋅ Gustavo Palazolo
Netskope Threat Coverage: BlackMatter
BlackMatter

2021-08-23 ⋅ YouTube ( DuMp-GuY TrIcKsTeR) ⋅ Jiří Vinopal
[2] Lokibot analyzing - spoofing GULoader and LokiBot C2 [part2] - INetSim + BurpSuite
CloudEyE Loki Password Stealer (PWS)

2021-08-23 ⋅ FBI ⋅ FBI
Indicators of Compromise Associated with OnePercent Group Ransomware
Cobalt Strike MimiKatz