Malpedia Library

Click here to download all references as Bib-File.•

2024-10-22 ⋅ Silent Push ⋅ Silent Push
Triad Nexus: Silent Push exposes FUNNULL CDN hosting DGA domains for suspect Chinese gambling sites, investment scams, a retail phishing campaign, and a polyfill.io supply chain attack impacting 110,000+ sites

2024-10-22 ⋅ Logpoint ⋅ Swachchhanda Shrawan Poudel
Latrodectus: The Wrath of Black Widow
Latrodectus

2024-10-22 ⋅ Cisco Talos ⋅ Chetan Raghuprasad
Threat actor abuses Gophish to deliver new PowerRAT and DCRAT
PowerRAT

2024-10-22 ⋅ Twitter (@threatinsight) ⋅ Threat Insight
Twitter Thread attributing Voldemort to TA415 (APT41, BrassTyphoon)
Voldemort

2024-10-22 ⋅ Kaspersky Labs ⋅ GReAT
Grandoreiro, the global trojan with grandiose ambitions
Grandoreiro

2024-10-21 ⋅ Ministry of Justice and Security ⋅ National Coordinator for Counterterrorism and Security
Cyber Security Picture Netherlands 2024

2024-10-21 ⋅ SOCRadar ⋅ SOCRadar
Biggest Education Industry Attacks in 2024
OverFlame

2024-10-21 ⋅ VMRay ⋅ VMRay Labs Team
Latrodectus: A year in the making
Latrodectus

2024-10-20 ⋅ cocomelonc ⋅ cocomelonc
Malware and cryptography 33: encrypt payload via Lucifer algorithm. Simple C example.

2024-10-19 ⋅ Emanuele De Lucia on Security ⋅ Emanuele De Lucia
“Hey ESET, Wait for the Leak”: Dissecting the “OctoberSeventh” Wiper targeting ESET customers in Israel
OctoberSeventh

2024-10-19 ⋅ Elastic ⋅ Salim Bitam
Tricks and Treats: GHOSTPULSE’s new pixel- level deception
HijackLoader

2024-10-18 ⋅ Forcepoint ⋅ Mayur Sewani
Inside the Latrodectus Malware Campaign Old School Phishing Meets Innovative Payload Delivery
Latrodectus

2024-10-18 ⋅ Netskope ⋅ Leandro Froes
New Bumblebee Loader Infection Chain Signals Possible Resurgence
BumbleBee

2024-10-18 ⋅ SpyCloud ⋅ Kyla Cardona
A Deep Dive Into the Intricate Chinese Cybercrime Ecosystem

2024-10-17 ⋅ Github (ssrdio) ⋅ Gregor Spagnolo
Analysis of BeaverTail & InvisibleFerret activity
BeaverTail InvisibleFerret

2024-10-17 ⋅ Sekoia ⋅ Quentin Bourgue, Sekoia TDR
ClickFix tactic: The Phantom Meet
Rhadamanthys Stealc

2024-10-17 ⋅ Cisco Talos ⋅ Asheer Malhotra, Dmytro Korzhevin, Vanja Svajcer, Vitor Ventura
UAT-5647 targets Ukrainian and Polish entities with RomCom malware variants
MeltingClaw ROMCOM RAT ShadyHammock RomCom

2024-10-17 ⋅ Loader Insight Agency ⋅ LIA
Correlating Vidar Stealer Build IDs Based on Loader Tasks
Lumma Stealer SmokeLoader Vidar

2024-10-17 ⋅ Microsoft Security ⋅ Microsoft Threat Intelligence
New macOS vulnerability, “HM Surf”, could lead to unauthorized data access

2024-10-17 ⋅ Hunt.io ⋅ Hunt.io
From Warm to Burned: Shedding Light on Updated WarmCookie Infrastructure
WarmCookie