Malpedia Library

Click here to download all references as Bib-File.•

2021-04-26 ⋅ Dragos ⋅ Dragos
New ICS Threat Activity Group: TALONITE
FlowCloud Lookback

2021-04-26 ⋅ Intel 471 ⋅ Intel 471
The cybercriminal underground hasn’t forgotten about financial services

2021-04-26 ⋅ Jamf Blog ⋅ Jaron Bradley
Shlayer malware abusing Gatekeeper bypass on macOS
Shlayer

2021-04-26 ⋅ Objective-See ⋅ Patrick Wardle
All Your Macs Are Belong To Us: bypassing macOS's file quarantine, gatekeeper, and notarization requirements
Shlayer

2021-04-26 ⋅ nviso ⋅ Maxime Thiebaut
Anatomy of Cobalt Strike’s DLL Stager
Cobalt Strike

2021-04-26 ⋅ getrevue ⋅ Twitter (@80vul)
Hunting Cobalt Strike DNS redirectors by using ZoomEye
Cobalt Strike

2021-04-26 ⋅ CISA ⋅ CISA, Department of Homeland Security, FBI
Russian Foreign Intelligence Service (SVR)Cyber Operations: Trends and Best Practices for Network Defenders
elf.wellmess WellMess

2021-04-25 ⋅ BBC ⋅ BBC Podcast
2. Disaster movie

2021-04-25 ⋅ The Record ⋅ Catalin Cimpanu
Hacking campaign targets FileZen file-sharing network appliances

2021-04-25 ⋅ Vulnerability.ch Blog ⋅ Corsin Camichel
Ransomware and Data Leak Site Publication Time Analysis
Avaddon Babuk Clop Conti DarkSide DoppelPaymer Mespinoza Nefilim REvil

2021-04-25 ⋅ Nightwatch Cybersecurity ⋅ Nightwatch Cybersecurity
Supply Chain Attacks via GitHub.com Releases

2021-04-25 ⋅ wire ⋅ Brian Barrett
VPN Hacks Are a Slow-Motion Disaster

2021-04-24 ⋅ xorl %eax, %eax ⋅ Anastasios Pingios
North Korea (DPRK) Cyber Operations Groups

2021-04-24 ⋅ ⋅ Non-offensive security ⋅ Non-offensive security team
Detect Cobalt Strike server through DNS protocol
Cobalt Strike

2021-04-24 ⋅ Bleeping Computer ⋅ Ax Sharma
HashiCorp is the latest victim of Codecov supply-chain attack

2021-04-24 ⋅ fumik0 blog ⋅ fumko
Anatomy of a simple and popular packer

2021-04-24 ⋅ Bleeping Computer ⋅ Lawrence Abrams
A ransomware gang made $260,000 in 5 days using the 7zip utility

2021-04-24 ⋅ Medium lordx64 ⋅ Taha Karim
Initial analysis of PasswordState supply chain attack backdoor code

2021-04-23 ⋅ Twitter (@vikas891) ⋅ Vikas Singh
Tweet on DOPPEL SPIDER using Intensive/Multiple Injected Cobalt Strike Beacons with varied polling intervals
Cobalt Strike DoppelPaymer

2021-04-23 ⋅ xorl %eax, %eax ⋅ Anastasios Pingios
Analysis of the CardingMafia March 2021 data breach