Malpedia Library

Click here to download all references as Bib-File.•

2024-08-27 ⋅ Lumen ⋅ Black Lotus Labs
Taking the Crossroads: The Versa Director Zero-Day Exploitation
VersaMem

2024-08-26 ⋅ The DFIR Report ⋅ The DFIR Report
BlackSuit Ransomware
BlackSuit Cobalt Strike SystemBC

2024-08-24 ⋅ YouTube (Black Hat) ⋅ Charles Li, Che Chang, Greg Chen
Chinese APT: A Master of Exploiting Edge Devices (Video)
SEASPY UNC4841

2024-08-14 ⋅ HarfangLab ⋅ HarfangLab CTR
Cyclops: a likely replacement for BellaCiao
BellaCiao Cyclops

2024-07-25 ⋅ Blackberry ⋅ BlackBerry Research and Intelligence team
SideWinder Utilizes New Infrastructure to Target Ports and Maritime Facilities in the Mediterranean Sea

2024-07-24 ⋅ Radware ⋅ Radware
Six-day, 14.7 Million RPS Web DDoS Attack Campaign Attributed to SN_BLACKMETA
Blackmeta

2024-07-15 ⋅ Sekoia ⋅ Sekoia TDR
MuddyWater replaces Atera by custom MuddyRot implant in a recent campaign
bugsleep

2024-06-20 ⋅ Hunt.io ⋅ Michael R
Caught in the Act: Uncovering SpyNote in Unexpected Places
SpyNote

2024-06-12 ⋅ The Cyber Express ⋅ Ashish Khaitan
Hack Alert: SN Blackmeta Claims Cyberattack on Snapchat Over Explicit Content and Alleged Political Bias!
Blackmeta

2024-06-06 ⋅ Blackberry ⋅ Dmitry Melikov
Kimsuky is targeting an arms manufacturer in Europe.
NikiHTTP

2024-06-05 ⋅ ⋅ LAC ⋅ Yoshihiro Ishikawa
Thumtais, a malware targeting Japanese organizations
EagerBee

2024-05-30 ⋅ Cisco Talos ⋅ Asheer Malhotra
LilacSquid: The stealthy trilogy of PurpleInk, InkBox and InkLoader
purpleink LilacSquid

2024-05-30 ⋅ Lumen ⋅ Black Lotus Labs
The Pumpkin Eclipse
Chalubo

2024-05-30 ⋅ Centurylink ⋅ Black Lotus Labs
The Pumpkin Eclipse
Chalubo

2024-05-28 ⋅ Reliaquest ⋅ RELIAQUEST THREAT RESEARCH TEAM
BlackSuit Attack Analysis
BlackSuit

2024-05-16 ⋅ Elastic ⋅ Daniel Stepanic, Samir Bousseaden
Spring Cleaning with LATRODECTUS: A Potential Replacement for ICEDID
IcedID Latrodectus

2024-05-15 ⋅ Stairwell ⋅ Threat Research at Stairwell
Stairwell threat report: Black Basta overview and detection rules
Black Basta Black Basta

2024-05-10 ⋅ Rapid7 Labs ⋅ Evan McCann, Thomas Elkins, Tyler McGraw
Ongoing Social Engineering Campaign Linked to Black Basta Ransomware Operators
Black Basta Black Basta Cobalt Strike NetSupportManager RAT

2024-05-10 ⋅ CISA ⋅ CISA
AA24-131A: #StopRansomware: Black Basta
Black Basta Black Basta

2024-04-30 ⋅ 0x0d4y ⋅ 0x0d4y
Latrodectus [IceNova] – Technical Analysis of the… New IcedID… Its Continuation… Or its Replacement?
Latrodectus