Malpedia Library

Click here to download all references as Bib-File.•

2021-05-14 ⋅ Bleeping Computer ⋅ Lawrence Abrams
DarkSide ransomware servers reportedly seized, REvil restricts targets
DarkSide DarkSide

2021-05-14 ⋅ Intel 471 ⋅ Intel 471
The moral underground? Ransomware operators retreat after Colonial Pipeline hack
DarkSide DarkSide

2021-05-14 ⋅ McAfee ⋅ Christiaan Beek, Raj Samani
Darkside Ransomware Victims Sold Short
DarkSide

2021-05-14 ⋅ The Record ⋅ Catalin Cimpanu
Darkside ransomware gang says it lost control of its servers & money a day after Biden threat
DarkSide Avaddon REvil

2021-05-14 ⋅ Bleeping Computer ⋅ Sergiu Gatlan
QNAP warns of eCh0raix ransomware attacks, Roon Server zero-day
QNAPCrypt

2021-05-14 ⋅ Blue Team Blog ⋅ Auth 0r
DarkSide Ransomware Operations – Preventions and Detections.
Cobalt Strike DarkSide

2021-05-13 ⋅ ⋅ AhnLab ⋅ AhnLab ASEC Analysis Team
APT attack for domestic companies using library files
ImprudentCook

2021-05-13 ⋅ BI. ZONE Cyber Threats Research Team ⋅ BI.ZONE
From pentest to APT attack: cybercriminal group FIN7 disguises its malware as an ethical hacker’s toolkit
DICELOADER

2021-05-13 ⋅ AWAKE ⋅ Kieran Evans
Catching the White Stork in Flight
Cobalt Strike MimiKatz RMS

2021-05-13 ⋅ Secureworks ⋅ Counter Threat Unit ResearchTeam
Ransomware Groups Use Tor-Based Backdoor for Persistent Access
DarkSide Snatch GOLD WATERFALL

2021-05-13 ⋅ Blackberry ⋅ BlackBerry Threat Research and Intelligence Team
Threat Thursday: SombRAT — Always Leave Yourself a Backdoor
SombRAT

2021-05-13 ⋅ Anomali ⋅ Gage Mele, Tara Gould
Threat Actors Use MSBuild to Deliver RATs Filelessly
Remcos

2021-05-13 ⋅ DomainTools ⋅ John “Turbo” Conwell, Tim Helming
Domain Blooms: Identifying Domain Name Themes Targeted By Threat Actors

2021-05-13 ⋅ Stranded on Pylos Blog ⋅ Joe Slowik
Mind the (Air) Gap
DarkSide

2021-05-13 ⋅ ABC News ⋅ Justin Gomez
'Don't panic,' Biden tells Americans facing gasoline shortages from pipeline attack
DarkSide

2021-05-13 ⋅ Malwarebytes ⋅ Jérôme Segura
Newly observed PHP-based skimmer shows ongoing Magecart Group 12 activity
magecart

2021-05-13 ⋅ Bleeping Computer ⋅ Lawrence Abrams
Chemical distributor pays $4.4 million to DarkSide ransomware
DarkSide DarkSide

2021-05-13 ⋅ The Record ⋅ Catalin Cimpanu
Popular hacking forum bans ransomware ads
DarkSide DarkSide

2021-05-13 ⋅ Bleeping Computer ⋅ Lawrence Abrams
Popular Russian hacking forum XSS bans all ransomware topics
DarkSide DarkSide LockBit REvil

2021-05-13 ⋅ Bleeping Computer ⋅ Lawrence Abrams
Meet Lorenz — A new ransomware gang targeting the enterprise
Lorenz