Malpedia Library

Click here to download all references as Bib-File.•

2021-05-13 ⋅ BI. ZONE Cyber Threats Research Team ⋅ BI.ZONE
From pentest to APT attack: cybercriminal group FIN7 disguises its malware as an ethical hacker’s toolkit
DICELOADER

2021-05-13 ⋅ AWAKE ⋅ Kieran Evans
Catching the White Stork in Flight
Cobalt Strike MimiKatz RMS

2021-05-13 ⋅ Secureworks ⋅ Counter Threat Unit ResearchTeam
Ransomware Groups Use Tor-Based Backdoor for Persistent Access
DarkSide Snatch GOLD WATERFALL

2021-05-13 ⋅ Blackberry ⋅ BlackBerry Threat Research and Intelligence Team
Threat Thursday: SombRAT — Always Leave Yourself a Backdoor
SombRAT

2021-05-13 ⋅ Anomali ⋅ Gage Mele, Tara Gould
Threat Actors Use MSBuild to Deliver RATs Filelessly
Remcos

2021-05-13 ⋅ DomainTools ⋅ John “Turbo” Conwell, Tim Helming
Domain Blooms: Identifying Domain Name Themes Targeted By Threat Actors

2021-05-13 ⋅ Stranded on Pylos Blog ⋅ Joe Slowik
Mind the (Air) Gap
DarkSide

2021-05-13 ⋅ ABC News ⋅ Justin Gomez
'Don't panic,' Biden tells Americans facing gasoline shortages from pipeline attack
DarkSide

2021-05-13 ⋅ Malwarebytes ⋅ Jérôme Segura
Newly observed PHP-based skimmer shows ongoing Magecart Group 12 activity
magecart

2021-05-13 ⋅ Bleeping Computer ⋅ Lawrence Abrams
Chemical distributor pays $4.4 million to DarkSide ransomware
DarkSide DarkSide

2021-05-13 ⋅ The Record ⋅ Catalin Cimpanu
Popular hacking forum bans ransomware ads
DarkSide DarkSide

2021-05-13 ⋅ Bleeping Computer ⋅ Lawrence Abrams
Popular Russian hacking forum XSS bans all ransomware topics
DarkSide DarkSide LockBit REvil

2021-05-13 ⋅ Bleeping Computer ⋅ Lawrence Abrams
Meet Lorenz — A new ransomware gang targeting the enterprise
Lorenz

2021-05-13 ⋅ Intrusiontruth ⋅ Intrusiontruth
Who is Mr. Zhao?

2021-05-13 ⋅ Bloomberg ⋅ Jennifer Jacobs, Michael Riley, William Turton
Colonial Pipeline Paid Hackers Nearly $5 Million in Ransom
DarkSide

2021-05-13 ⋅ Talos ⋅ Asheer Malhotra, Justin Thattil, Kendall McKay
Transparent Tribe APT expands its Windows malware arsenal
Crimson RAT Oblique RAT

2021-05-12 ⋅ Avast Decoded ⋅ David Zimmer
Writing a VB6 P-Code Debugger

2021-05-12 ⋅ Medium Mehmet Ergene ⋅ Mehmet Ergene
Enterprise Scale Threat Hunting: Network Beacon Detection with Unsupervised ML and KQL — Part 1
Cobalt Strike

2021-05-12 ⋅ Microsoft ⋅ Microsoft
Incident response playbooks

2021-05-12 ⋅ FBI ⋅ FBI
PIN Number 20210512-001: Spear-Phishing Attack Directing Recipients to Download a Fake Windows Application Impersonating a Financial Institution