Malpedia Library

Click here to download all references as Bib-File.•

2023-05-22 ⋅ AhnLab ⋅ ASEC
Kimsuky Group Using Meterpreter to Attack Web Servers
Kimsuky Meterpreter

2023-05-22 ⋅ Trend Micro ⋅ Bahaa Yamany, Mahmoud Zohdy, Mohamed Fahmy, Sherif Magdy
BlackCat Ransomware Deploys New Signed Kernel Driver
BlackCat

2023-05-22 ⋅ Cluster25 ⋅ Cluster25 Threat Intel Team
Back in Black: BlackByte Ransomware returns with its New Technology (NT) version
BlackByte

2023-05-20 ⋅ DataBreaches.net ⋅ Dissent
Peachtree Orthopedics alerts patients to cyberattack; third patient data breach in seven years
TheDarkOverlord

2023-05-19 ⋅ Trend Micro ⋅ Jaromír Hořejší, Nitesh Surana
Rust-Based Info Stealers Abuse GitHub Codespaces
DeltaStealer

2023-05-18 ⋅ Intezer ⋅ Ryan Robinson
How Hackers Use Binary Padding to Outsmart Sandboxes and Infiltrate Your Systems
Emotet

2023-05-16 ⋅ Recorded Future ⋅ Insikt Group
OilAlpha: A Likely Pro-Houthi Group Targeting Entities Across the Arabian Peninsula
OilAlpha

2023-05-16 ⋅ KrebsOnSecurity ⋅ Brian Krebs
Russian Hacker “Wazawaka” Indicted for Ransomware
Babuk Hive LockBit LockBit Babuk Hive LockBit

2023-05-15 ⋅ CrowdStrike ⋅ CrowdStrike
Hypervisor Jackpotting, Part 3: Lack of Antivirus Support Opens the Door to Adversary Attacks
BlackCat SystemBC

2023-05-15 ⋅ AhnLab ⋅ AhnLab ASEC Analysis Team
LokiLocker, a Ransomware Similar to BlackBit Being Distributed in Korea
LokiLocker

2023-05-15 ⋅ Symantec ⋅ Threat Hunter Team
Lancefly: Group Uses Custom Backdoor to Target Orgs in Government, Aviation, Other Sectors
Merdoor PlugX ShadowPad ZXShell Lancefly

2023-05-13 ⋅ ⋅ Xitan Laboratory ⋅ ABC123
Article 62: Summary of Vietnam Hailianhua APT’s Email Phishing Techniques and Tactics against Mainland China

2023-05-12 ⋅ Cyfirma ⋅ cyfirma
Evolution of KILLNET from Hacktivism to Private Hackers Company and the Role of Sub-groups
Zarya

2023-05-12 ⋅ cyble ⋅ Cyble
BlackSuit Ransomware Strikes Windows and Linux Users
BlackSuit BlackSuit

2023-05-12 ⋅ Securonix ⋅ Den Iyzvyk, Oleg Kolesnikov, Tim Peck
Ongoing MEME#4CHAN Attack/Phishing Campaign uses Meme-Filled Code to Drop XWorm Payloads
XWorm

2023-05-10 ⋅ Deep instinct ⋅ Deep Instinct Threat Lab
BPFDoor Malware Evolves – Stealthy Sniffing Backdoor Ups Its Game
BPFDoor

2023-05-09 ⋅ Sophos ⋅ Paul Jaramillo
Akira Ransomware is “bringin’ 1988 back”
Akira

2023-05-08 ⋅ Viuleeenz ⋅ Alessandro Strino
Extracting DDosia targets from process memory
Dosia

2023-05-08 ⋅ Blackberry ⋅ BlackBerry Research & Intelligence Team
SideWinder Uses Server-side Polymorphism to Attack Pakistan Government Officials — and Is Now Targeting Turkey

2023-05-04 ⋅ SOCRadar ⋅ SOCRadar
Sandworm Attackers Use WinRAR to Wipe Data from Government Devices
RoarBAT