Malpedia Library

2021-10-08 ⋅ Virus Bulletin ⋅ Seongsu Park
Multi-universe of adversary: multiple campaigns of the Lazarus group and their connections
Dacls AppleJeus AppleJeus Bankshot BookCodes RAT Dacls DRATzarus LCPDot LPEClient

2021-09-22 ⋅ Secureworks ⋅ Counter Threat Unit ResearchTeam
REvil Ransomware Reemerges After Shutdown; Universal Decryptor Released
REvil REvil

2021-09-17 ⋅ CrowdStrike ⋅ Falcon OverWatch Team
Falcon OverWatch Hunts Down Adversaries Where They Hide
BazarBackdoor Cobalt Strike

2021-09-08 ⋅ Arash's Blog ⋅ Arash Parsa
Hook Heaps and Live Free
Cobalt Strike

2021-09-01 ⋅ YouTube (Black Hat) ⋅ Christian Doerr, Tsuyoshi Taniguchi
How Did the Adversaries Abusing the Bitcoin Blockchain Evade Our Takeover?
Cerber Pony

2021-08-31 ⋅ Cisco Talos ⋅ Edmund Brumaghin, Vitor Ventura
Attracting flies with Honey(gain): Adversarial abuse of proxyware

2021-08-11 ⋅ BleepingComputer ⋅ Lawrence Abrams
Kaseya's universal REvil decryption key leaked on a hacking forum
REvil

2021-07-22 ⋅ Bleeping Computer ⋅ Lawrence Abrams
Kaseya obtains universal decryptor for REvil ransomware victims
REvil

2021-07-15 ⋅ ReversingLabs ⋅ Robert Simmons
Data Exfiltrator - A New Tactic for Ransomware Adversaries
DataExfiltrator

2021-07-12 ⋅ Proofpoint ⋅ Crista Giering, Joshua Miller, Threat Research Team
Operation SpoofedScholars: A Conversation with TA453

2021-06-30 ⋅ Advanced Intelligence ⋅ AdvIntel Security & Development Team, Brandon Rudisel, Yelisey Boguslavskiy
Ransomware-&-CVE: Industry Insights Into Exclusive High-Value Target Adversarial Datasets
BlackKingdom Ransomware Clop dearcry Hades REvil

2021-06-29 ⋅ Silverado Policy Accelerator ⋅ Anne Neuberger, Dmitri Alperovitch
Cyber Strategy in the Biden Era: A Conversation with Anne Neuberger

2021-06-03 ⋅ Secureworks ⋅ Counter Threat Unit ResearchTeam, Secureworks Adversary Group
OAuth’s Device Code Flow Abused in Phishing Attacks

2021-05-20 ⋅ Wired ⋅ Andy Greenberg
The Full Story of the Stunning RSA Hack Can Finally Be Told

2021-05-18 ⋅ Sophos ⋅ Greg Iddon, John Shier, Mat Gangwer, Peter Mackenzie
The Active Adversary Playbook 2021
Cobalt Strike MimiKatz

2021-05-06 ⋅ Black Hat ⋅ Christian Doerr, Tsuyoshi Taniguchi
How Did the Adversaries Abusing Bitcoin Blockchain Evade Our Takeover
Cerber Pony

2021-04-17 ⋅ Advanced Intelligence ⋅ Al Calleo, Vitali Kremez, Yelisey Boguslavskiy
Adversary Dossier: Ryuk Ransomware Anatomy of an Attack in 2021
Ryuk

2021-02-09 ⋅ Medium (@alex.birsan) ⋅ Alex Birsan
Dependency Confusion: How I Hacked Into Apple, Microsoft and Dozens of Other Companies

2021-01-07 ⋅ Recorded Future ⋅ Insikt Group®
Aversary Infrastructure Report 2020: A Defender's View
Octopus pupy Cobalt Strike Empire Downloader Meterpreter PoshC2

2020-12-16 ⋅ Fortinet ⋅ Fred Gutierrez, Val Saengphaibul
Adversary Playbook: JavaScript RAT Looking for that Government Cheese
JSOutProx