Malpedia Library

Click here to download all references as Bib-File.•

2023-12-13 ⋅ ShadowStackRE ⋅ ShadowStackRE
Rhysida Ransomware
Rhysida Rhysida

2023-12-12 ⋅ Ukrainska Pravda ⋅ Alona Mazurenko
Ukrainian intelligence attacks and paralyses Russia's tax system

2023-12-12 ⋅ Microsoft ⋅ Microsoft Threat Intelligence
Threat actors misuse OAuth applications to automate financially driven attacks
Storm-1283 Storm-1286

2023-12-11 ⋅ Cisco Talos ⋅ Asheer Malhotra, Jungsoo An, Vitor Ventura
Operation Blacksmith: Lazarus targets organizations worldwide using novel Telegram-based malware written in DLang
BottomLoader DLRAT HazyLoad NineRAT

2023-12-11 ⋅ Sentinel LABS ⋅ Aleksandar Milenkoski, Bendik Hagen
Sandman APT | China-Based Adversaries Embrace Lua
KEYPLUG LuaDream

2023-12-09 ⋅ Github (struppigel) ⋅ Karsten Hahn
AST based GootLoader unpacker, C2 extractor and deobfuscator
GootLoader

2023-12-08 ⋅ Twitter (@embee_research) ⋅ Embee_research
Ghidra Basics - Manual Shellcode Analysis and C2 Extraction
Cobalt Strike

2023-12-08 ⋅ Medium g0njxa ⋅ g0njxa
Approaching stealers devs : a brief interview with Meta
MetaStealer

2023-12-08 ⋅ Security Intelligence ⋅ Claire Zaboeva, Golo Mühr, Joe Fasulo
ITG05 operations leverage Israel-Hamas conflict lures to deliver Headlace malware
Headlace

2023-12-07 ⋅ Microsoft ⋅ Microsoft Threat Intelligence
Star Blizzard increases sophistication and evasion in ongoing attacks
Callisto

2023-12-07 ⋅ The Record ⋅ Alexander Martin
UK names FSB unit behind hack-and-leak campaigns, summons Russian ambassador

2023-12-07 ⋅ ⋅ Cert-UA ⋅ Cert-UA
UAC-0050 mass cyberattack using RemcosRAT/MeduzaStealer against Ukraine and Poland (CERT-UA#8218)
Meduza Stealer Remcos

2023-12-07 ⋅ Group-IB ⋅ Sharmine Low
Curse of the Krasue: New Linux Remote Access Trojan targets Thailand
Krasue RAT

2023-12-06 ⋅ NCSC UK ⋅ NCSC UK
Russian FSB cyber actor Star Blizzard continues worldwide spear-phishing campaigns: Updated and new research, updated vulnerabilities, security updates and revised actors.
Callisto

2023-12-05 ⋅ Kaspersky Labs ⋅ Sergey Puzan
BlueNoroff: new Trojan attacking macOS users
RustBucket

2023-12-05 ⋅ Medium g0njxa ⋅ g0njxa
Approaching stealers devs : a brief interview with StealC
Stealc

2023-12-04 ⋅ The Record ⋅ Jonathan Greig
Florida water agency latest to confirm cyber incident as feds warn of nation-state attacks

2023-12-03 ⋅ Medium OSINT Team ⋅ Criminal IP
SkidSec Hacker Group Announces Plans to Spread North Korean Propaganda Through Hacked Printers in South Korea
SkidSec

2023-12-02 ⋅ Medium g0njxa ⋅ amadey
Approaching stealers devs : a brief interview with Amadey
Amadey

2023-12-01 ⋅ Twitter (@MsftSecIntel) ⋅ Microsoft Threat Intelligence
Tweet about Storm-1044 and Storm-0216, Danabot leading to Cactus ransomware
Cactus DanaBot TA2101