Malpedia Library

Click here to download all references as Bib-File.•

2021-10-07 ⋅ Mandiant ⋅ Mandiant Research Team
FIN12 Group Profile: FIN12 Priotizes Speed to Deploy Ransomware Aginst High-Value Targets
Cobalt Strike Empire Downloader TrickBot

2021-10-07 ⋅ Twitter (@billyleonard) ⋅ Billy Leonard, Google Threat Analysis Group
Tweet on IOCs related to APT28

2021-10-07 ⋅ Amnesty International ⋅ Amnesty International
Hackers-for-Hire in West Africa - Activist in Togo attacked with Indian-made Spyware
yty

2021-10-07 ⋅ Kaspersky ⋅ Aseel Kayal, Mark Lechtik, Paul Rascagnères
LYCEUM Reborn: Counterintelligence in the Middle East
danbot LYCEUM

2021-10-07 ⋅ S2W Inc. ⋅ Jaeki Kim, Kyoung-ju Kwak, Sojun Ryu
Operation Newton: Hi Kimsuky? Did an Apple(seed) really fall on Newton’s head?
Appleseed Kimsuky

2021-10-07 ⋅ The Record ⋅ Catalin Cimpanu
Netherlands can use intelligence or armed forces to respond to ransomware attacks

2021-10-07 ⋅ The Record ⋅ Catalin Cimpanu
Google notifies 14,000 Gmail users of targeted APT28 attacks

2021-10-07 ⋅ Netskope ⋅ Ghanashyam Satpathy, Gustavo Palazolo
SquirrelWaffle: New Malware Loader Delivering Cobalt Strike and QakBot
Cobalt Strike QakBot Squirrelwaffle

2021-10-07 ⋅ Uptycs ⋅ Siddharth Sharma
Team TNT Deploys Malicious Docker Image On Docker Hub
TeamTNT

2021-10-07 ⋅ ESET Research ⋅ Vladislav Hrčka
FontOnLake: Previously unknown malware family targeting Linux
FontOnLake

2021-10-07 ⋅ ANY.RUN ⋅ ANY.RUN
ANY.RUN report for activity of the downloader

2021-10-07 ⋅ Microsoft ⋅ Microsoft
Microsoft Digital Defense Report - October 2021
APT15 APT31 APT40 APT5 Earth Lusca HAFNIUM

2021-10-07 ⋅ Palo Alto Networks Unit 42 ⋅ Peter Renals
SilverTerrier – Nigerian Business Email Compromise

2021-10-07 ⋅ Kaspersky ⋅ Fedor Sinitsyn, Yanis Zinchenko
Ransomware in the CIS
Cryakl Dharma Hakbit Phobos Void

2021-10-07 ⋅ Blackberry ⋅ The BlackBerry Research & Intelligence Team
Threat Thursday: BluStealer Infostealer
BluStealer

2021-10-07 ⋅ Mandiant ⋅ Adam Brunner, Genevieve Stark, Jennifer Brooks, Jeremy Kennelly, Joshua Shilko, Kimberly Goody, Zach Riddle
FIN12: The Prolific Ransomware Intrusion Threat Actor That Has Aggressively Pursued Healthcare Targets
BazarBackdoor GRIMAGENT Ryuk

2021-10-06 ⋅ Blackberry ⋅ Blackberry Research
Finding Beacons in the Dark
Cobalt Strike

2021-10-06 ⋅ Cybereason ⋅ Assaf Dahan, Chen Erlich, Daniel Frank, Tom Fakterman
Operation GhostShell: Novel RAT Targets Global Aerospace and Telecoms Firms
ShellClient RAT

2021-10-06 ⋅ Twitter (@ESETresearch) ⋅ ESET Research
Tweet on ERMAC android malware
ERMAC

2021-10-06 ⋅ Anomali ⋅ Tara Gould
Inside TeamTNT’s Impressive Arsenal: A Look Into A TeamTNT Server
TeamTNT