Malpedia Library

Click here to download all references as Bib-File.•

2021-06-05 ⋅ Anchored Narratives on Threat Intelligence and Geopolitics ⋅ RJM
Geopolitical nation-state threat actor overview May 2021

2021-06-04 ⋅ AhnLab ⋅ AhnLab ASEC Analysis Team
APT Attacks on Domestic Companies Using Library Files

2021-06-04 ⋅ RiskIQ ⋅ Team RiskIQ
The Sysrv-hello Cryptojacking Botnet: Here’s What’s New
Sysrv-hello

2021-06-04 ⋅ Github (NightfallGT) ⋅ NightfallGT
MercurialGrabber Github Repository
MercurialGrabber

2021-06-04 ⋅ Twitter (@alex_lanstein) ⋅ Alex Lanstein
Tweet on UNC2652/NOBELIUM targeting IOS users exploiting CVE-2021-1879
Cobalt Strike

2021-06-04 ⋅ DeepInstinct ⋅ Bar Block
The Ransomware Conundrum – A Look into DarkSide
DarkSide

2021-06-04 ⋅ K7 Security ⋅ Mary Muthu Francisca
Glupteba back on track spreading via EternalBlue exploits
Glupteba

2021-06-04 ⋅ ⋅ Security Service of Ukraine ⋅ Security Service of Ukraine
The SBU blocked a mass cyberattack by Russian special services on the computer networks of the Ukrainian authorities

2021-06-04 ⋅ Inky ⋅ Roger Kay
Colonial Pipeline Ransomware Hack Unleashes Flood of Related Phishing Attempts
Cobalt Strike

2021-06-04 ⋅ Bleeping Computer ⋅ Sergiu Gatlan
FreakOut malware worms its way into vulnerable VMware servers
N3Cr0m0rPh

2021-06-04 ⋅ The Record ⋅ Catalin Cimpanu
US arrests Latvian woman who worked on Trickbot malware source code
TrickBot

2021-06-04 ⋅ Department of Justice ⋅ Office of Public Affairs
Latvian National Charged for Alleged Role in Transnational Cybercrime Organization
TrickBot

2021-06-04 ⋅ Fortinet ⋅ Xiaopeng Zhang
Phishing Malware Hijacks Bitcoin Addresses and Delivers New Agent Tesla Variant
Agent Tesla

2021-06-04 ⋅ JPCERT/CC ⋅ Kota Kino
PHP Malware Used in Lucky Visitor Scam

2021-06-04 ⋅ Palo Alto Networks Unit 42 ⋅ Nathaniel Quist
TeamTNT Actively Enumerating Cloud Environments to Infiltrate Organizations

2021-06-04 ⋅ The Record ⋅ Catalin Cimpanu
EpsilonRed ransomware group hits one of India’s financial software powerhouses
Epsilon Red

2021-06-03 ⋅ YouTube (0xca7) ⋅ 0xca7
FatalRAT: Dumping the "payload" aka. Cat vs RAT
FatalRat

2021-06-03 ⋅ Twitter (@alberto__segura) ⋅ Alberto Segura
Tweet on decrypting FluBot strings
FluBot

2021-06-03 ⋅ Secureworks ⋅ Counter Threat Unit ResearchTeam, Secureworks Adversary Group
OAuth’s Device Code Flow Abused in Phishing Attacks

2021-06-03 ⋅ Twitter (@James_inthe_box) ⋅ James_inthe_box
Tweet on AskarLoader malware