Malpedia Library

Click here to download all references as Bib-File.•

2021-01-06 ⋅ Red Canary ⋅ Tony Lambert
Hunting for GetSystem in offensive security tools
Cobalt Strike Empire Downloader Meterpreter PoshC2

2021-01-05 ⋅ CISA, FBI, NSA, ODNI
Joint Statement by the Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), the Office of the Director of National Intelligence (ODNI), and the National Security Agency (NSA)
SUNBURST

2021-01-04 ⋅ Profero ⋅ Profero, SecurityJoes
APT27 Turns to Ransomware
Clambling

2021-01-03 ⋅ ⋅ EST Security ⋅ Alyac
Thallium organization exploits private stock investment messenger to attack software supply chain

2021-01-01 ⋅ AWAKE ⋅ Awake Security
Breaking the Ice: Detecting IcedID and Cobalt Strike Beacon with Network Detection and Response (NDR)
Cobalt Strike IcedID PhotoLoader

2021-01-01 ⋅ Acronis ⋅ Acronis Security
Analysis of Ragnar Locker Ransomware
RagnarLocker

2020-12-29 ⋅ Netresec ⋅ Erik Hjelmvik
Extracting Security Products from SUNBURST DNS Beacons
SUNBURST

2020-12-24 ⋅ K7 Security ⋅ K7 Labs, Partheeban J
Dark Side Of BlackNET RAT
BlackNET RAT

2020-12-22 ⋅ Prevasio ⋅ Sergei Shevchenko
Sunburst Backdoor, Part III: DGA & Security Software (Broken Link)
SUNBURST

2020-12-21 ⋅ npr ⋅ Greg Myre, Laurel Wamsley
How A Cybersecurity Firm Uncovered The Massive Computer Hack

2020-12-21 ⋅ Bloomberg ⋅ Threat Hunter Team
SolarWinds Adviser Warned of Lax Security Years Before Hack

2020-12-20 ⋅ Security Magic ⋅ Security Magic
Tracking Jupyter Malware
solarmarker

2020-12-17 ⋅ Menlo Security ⋅ Krishnan Subramanian
Increase In Attack: SocGholish
FAKEUPDATES

2020-12-17 ⋅ splunk ⋅ John Stoner
Onboarding Threat Indicators into Splunk Enterprise Security: SolarWinds Continued
SUNBURST

2020-12-17 ⋅ ⋅ EST Security ⋅ Alyac
Thallium organization attacks domestic blockchain company with documents of non-delinquency confirmation

2020-12-17 ⋅ Microsoft ⋅ Brad Smith
A moment of reckoning: the need for a strong and global cybersecurity response
SUNBURST

2020-12-16 ⋅ Cyborg Security ⋅ Josh Meltzer
SUNBURST: SolarWinds Supply-Chain Attack
SUNBURST

2020-12-16 ⋅ GuidePoint Security ⋅ Wes Riley
SUPERNOVA SolarWinds .NET Webshell Analysis
SUPERNOVA

2020-12-16 ⋅ Dragos ⋅ Camille Singleton, IBM SECURITY X-FORCE, Selena Larson
Assessing Ransomware and Extortion Activities Impacting Industrial Organizations: Ransomware in ICS Environments
REvil

2020-12-15 ⋅ Cyborg Security ⋅ Austin Jackson
Threat Hunt Deep Dives: SolarWinds Supply Chain Compromise (Solorigate / SUNBURST Backdoor)
SUNBURST