Malpedia Library

Click here to download all references as Bib-File.•

2023-08-16 ⋅ Knownsec ⋅ Knownsec 404 Team
APT-K-47 “Mysterious Elephant”, a new APT organization in South Asia
ORPCBackdoor Confucious

2023-08-14 ⋅ Group-IB ⋅ Artem Grischenko, Pavel Naumov
Breaking down Gigabud banking malware with Group-IB Fraud Matrix
Gigabud

2023-08-10 ⋅ Avast Decoded ⋅ Threat Research Team
Unveiling the Dominance of Scams Amidst a 24% Surge in Blocked Attacks
Storm-1567

2023-08-10 ⋅ Trellix ⋅ Antonio Ribeiro, Jonell Baltazar
Exploring New Techniques of Fake Browser Updates Leading to NetSupport RAT
NetSupportManager RAT

2023-08-10 ⋅ CrowdStrike ⋅ Counter Adversary Operations, Ken Balint, Marco Ortisi, Nicolas Zilio
Discovering and Blocking a Zero-Day Exploit with CrowdStrike Falcon Complete: The Case of CVE-2023-36874

2023-08-10 ⋅ EclecticIQ ⋅ Arda Büyükkaya
German Embassy Lure: Likely Part of Campaign Against NATO Aligned Ministries of Foreign Affairs
Unidentified 107 (APT29)

2023-08-10 ⋅ Kaspersky ⋅ Kurt Baumgartner
Focus on DroxiDat/SystemBC
SystemBC

2023-08-09 ⋅ BleepingComputer ⋅ Bill Toulas
Rhysida ransomware behind recent attacks on healthcare
Rhysida

2023-08-08 ⋅ Techtarget ⋅ Alecander Culafi
CrowdStrike observes massive spike in identity-based attacks
VICE SPIDER

2023-08-08 ⋅ Cisco Talos ⋅ Cisco Talos
What Cisco Talos knows about the Rhysida ransomware
Rhysida

2023-08-08 ⋅ Checkpoint ⋅ Checkpoint Research
THE RHYSIDA RANSOMWARE: ACTIVITY ANALYSIS AND TIES TO VICE SOCIETY
Rhysida Vanilla Tempest

2023-08-08 ⋅ Security Service of Ukraine ⋅ Security Service of Ukraine
Cyber Operation of Russian Intelligence Services as a Component of Confrontation on the Battlefield

2023-08-08 ⋅ Security Service of Ukraine ⋅ Security Service of Ukraine
SBU exposes russian intelligence attempts to penetrate Armed Forces' planning operations system

2023-08-07 ⋅ Recorded Future ⋅ Insikt Group
RedHotel: A Prolific, Chinese State-Sponsored Group Operating at a Global Scale
Winnti Brute Ratel C4 Cobalt Strike FunnySwitch PlugX ShadowPad Spyder Earth Lusca

2023-08-07 ⋅ Team Cymru ⋅ S2 Research Team
Visualizing Qakbot Infrastructure Part II: Uncharted Territory
QakBot

2023-08-07 ⋅ SentinelOne ⋅ Aleksandar Milenkoski, Tom Hegel
Comrades in Arms? | North Korea Compromises Sanctioned Russian Missile Engineering Company
OpenCarrot

2023-08-06 ⋅ 0xToxin Labs ⋅ @0xToxin
DarkGate - Threat Breakdown Journey
DarkGate

2023-08-03 ⋅ OALabs ⋅ Sergei Frankoff
Golang Garble String Decryption
Bandit Stealer

2023-08-03 ⋅ Aon ⋅ Aon’s Cyber Labs
DarkGate Keylogger Analysis: Masterofnone
DarkGate

2023-08-03 ⋅ Kaspersky ⋅ Kaspersky
What’s happening in the world of crimeware: Emotet, DarkGate and LokiBot
LokiBot DarkGate Emotet