Malpedia Library

2020-10-19 ⋅ Riskint Blog ⋅ Curtis
Revisited: Fancy Bear's New Faces...and Sandworms' too
BlackEnergy EternalPetya Industroyer Olympic Destroyer

2020-10-19 ⋅ Trend Micro ⋅ Aliakbar Zahravi, Cedric Pernet, Daniel Lunghi, Eliot Cao, Jaromír Hořejší, John Zhang, Joseph C. Chen, Nelson William Gamazo Sanchez
Operation Earth Kitsune: Tracking SLUB’s Current Operations
SLUB

2020-10-19 ⋅ FBI ⋅ FBI
GRU HACKERS' DESTRUCTIVE MALWARE AND INTERNATIONAL CYBER ATTACKS

2020-10-19 ⋅ CyberScoop ⋅ Tim Starks
US charges Russian GRU officers for NotPetya, other major hacks
EternalPetya

2020-10-19 ⋅ Wired ⋅ Andy Greenberg
US Indicts Sandworm, Russia's Most Destructive Cyberwar Unit
EternalPetya Olympic Destroyer

2020-10-18 ⋅ Youtube (L!NK) ⋅ LinkCabin
Malware Analysis: Stealer - XOR, CyberChef, x64Dbg Scripting (Part 2)
Raccoon

2020-10-18 ⋅ The DFIR Report ⋅ The DFIR Report
Ryuk in 5 Hours
BazarBackdoor Cobalt Strike Ryuk

2020-10-16 ⋅ Hornetsecurity ⋅ Hornetsecurity Security Lab
VBA Purging Malspam Campaigns
Agent Tesla Formbook

2020-10-16 ⋅ Recorded Future ⋅ Insikt Group®
Banking Web Injects Are Top Cyber Threat For Financial Sector
Cerberus

2020-10-16 ⋅ ⋅ Alyac ⋅ Alyac
탈륨조직의 국내 암호화폐 지갑 펌웨어로 위장한 다차원 APT 공격 분석출처 ( THALLIUM)

2020-10-16 ⋅ ThreatConnect ⋅ ThreatConnect Research Team
ThreatConnect Research Roundup: Possible Ryuk Infrastructure
Ryuk

2020-10-16 ⋅ Proofpoint ⋅ Cassandra A., Proofpoint Threat Research Team
Geofenced Amazon Japan Credential Phishing Volumes Rival Emotet
Emotet

2020-10-16 ⋅ Duo ⋅ Dennis Fisher
Trickbot Up to Its Old Tricks
TrickBot

2020-10-16 ⋅ Google ⋅ Google Threat Analysis Group, Shane Huntley
How we're tackling evolving online threats

2020-10-16 ⋅ Bleeping Computer ⋅ Lawrence Abrams
ThunderX Ransomware rebrands as Ranzy Locker, adds data leak site
ThunderX

2020-10-16 ⋅ Medium Doublepulsar ⋅ Kevin Beaumont
Second Zerologon attacker seen exploiting internet honeypot
RemCom

2020-10-16 ⋅ CrowdStrike ⋅ The Crowdstrike Intel Team
WIZARD SPIDER Update: Resilient, Reactive and Resolute
BazarBackdoor Conti Ryuk TrickBot

2020-10-15 ⋅ Department of Justice ⋅ Department of Justice
Officials Announce International Operation Targeting Transnational Criminal Organization QQAAZZ that Provided Money Laundering Services to High-Level Cybercriminals
Dridex ISFB TrickBot

2020-10-15 ⋅ Bitdefender ⋅ Liviu Arsene, Silvia Pripoae
Looking Into the Eye of the Interplanetary Storm
IPStorm IPStorm

2020-10-15 ⋅ lacework ⋅ Chris Hall
Moobot's Cloud Migration