Malpedia Library

Click here to download all references as Bib-File.•

2020-10-28 ⋅ Microsoft ⋅ Tom Burt
Cyberattacks target international conference attendees (APT35/PHOSPHORUS)

2020-10-27 ⋅ US-CERT ⋅ US-CERT
Alert (AA20-301A): North Korean Advanced Persistent Threat Focus: Kimsuky
BabyShark GREASE MECHANICAL Meterpreter Kimsuky

2020-10-27 ⋅ Twitter (@3xp0rtblog) ⋅ 3xp0rt
Tweet on Ficker Stealer
Ficker Stealer

2020-10-27 ⋅ Cofense ⋅ Adam Martin, Cofense Phishing Defense Center, Kian Buckley Maher, Nathaniel Sagibanda
Purchase Order Phishing, the Everlasting Phishing Tactic

2020-10-27 ⋅ Recorded Future ⋅ Insikt Group®
Pulse Report:Insikt Group Discovers Global Credential Harvesting Campaign Using FiercePhish Open Source Framework

2020-10-27 ⋅ Sophos Managed Threat Response (MTR) ⋅ Greg Iddon
MTR Casebook: An active adversary caught in the act
Cobalt Strike

2020-10-27 ⋅ Bleeping Computer ⋅ Ionut Ilascu
Enel Group hit by ransomware again, Netwalker demands $14 million
Mailto

2020-10-27 ⋅ Dr.Web ⋅ Dr.Web
Study of the ShadowPad APT backdoor and its relation to PlugX
Ghost RAT PlugX ShadowPad

2020-10-27 ⋅ Bleeping Computer ⋅ Lawrence Abrams
Steelcase furniture giant hit by Ryuk ransomware attack
Ryuk

2020-10-26 ⋅ AWAKE ⋅ Ashish Gahlot
Threat Hunting for Avaddon Ransomware
Avaddon

2020-10-26 ⋅ Arbor Networks ⋅ Suweera De Souza
Dropping the Anchor
AnchorDNS Anchor TrickBot

2020-10-26 ⋅ Wired ⋅ Andy Greenberg
The Russian Hackers (BERSERK BEAR) Playing 'Chekhov's Gun' With US Infrastructure

2020-10-26 ⋅ ThreatConnect ⋅ ThreatConnect Research Team
ThreatConnect Research Roundup: Ryuk and Domains Spoofing ESET and Microsoft
Ryuk

2020-10-26 ⋅ ⋅ Qianxin ⋅ Threat Intelligence Center
Analysis of the attack activities of the Rattlesnake organization using the Buffy bilateral agreement as bait
SideWinder

2020-10-26 ⋅ Checkpoint ⋅ Eyal Itkin, Itay Cohen
Exploit Developer Spotlight: The Story of PlayBit
Dyre Maze PyLocky Ramnit REvil

2020-10-24 ⋅ KrabsOnSecurity ⋅ Mr. Krabs
Gacrux – a basic C malware with a custom PE loader
Gacrux

2020-10-24 ⋅ KrabsOnSecurity ⋅ Mr. Krabs
Gacrux – a basic C malware with a custom PE loader

2020-10-23 ⋅ @krabsonsecurity
Tweet: An interesting tidbit: it has a Mach-O bin
Xloader

2020-10-23 ⋅ Hornetsecurity ⋅ Hornetsecurity Security Lab
Leakware-Ransomware-Hybrid Attacks
Avaddon Clop Conti DarkSide DoppelPaymer Mailto Maze Mespinoza Nefilim RagnarLocker REvil Sekhmet SunCrypt

2020-10-23 ⋅ AP News ⋅ Frank Bajak
Report: Ransomware disables Georgia county election database
DoppelPaymer