Malpedia Library

Click here to download all references as Bib-File.•

2023-06-20 ⋅ Recorded Future ⋅ Insikt Group
BlueDelta Exploits Ukrainian Government Roundcube Mail Servers to Support Espionage Activities

2023-06-19 ⋅ ⋅ Cert-UA ⋅ Cert-UA
Targeted UAC-0102 cyber attacks against UKR.NET service users (CERT-UA#6858)
UAC-0102

2023-06-16 ⋅ SOC Prime ⋅ Veronika Telychko
PicassoLoader and Cobalt Strike Beacon Detection: UAC-0057 aka GhostWriter Hacking Group Attacks the Ukrainian Leading Military Educational Institution
Cobalt Strike PicassoLoader Ghostwriter

2023-06-16 ⋅ Bitdefender ⋅ Andrei Lapusneanu, Bogdan Botezatu
Fragments of Cross-Platform Backdoor Hint at Larger Mac OS Attack

2023-06-16 ⋅ Palo Alto Networks: Cortex Threat Research ⋅ Lior Rochberger
Through the Cortex XDR Lens: Uncovering a New Activity Group Targeting Governments in the Middle East and Africa
CHINACHOPPER Ladon Yasso CL-STA-0043

2023-06-15 ⋅ ESET Research ⋅ Lukáš Štefanko
Android GravityRAT goes after WhatsApp backups
Gravity RAT

2023-06-15 ⋅ Team Cymru ⋅ S2 Research Team
Darth Vidar: The Aesir Strike Back
Vidar

2023-06-15 ⋅ Zscaler ⋅ Brett Stone-Gross
Mystic Stealer: The New Kid on the Block
Mystic Stealer

2023-06-15 ⋅ Github (cocomelonc) ⋅ cocomelonc
Malware analysis report: Babuk ransomware
Babuk

2023-06-15 ⋅ Seqrite ⋅ Sathwik Ram Prakki
Double Action, Triple Infection, and a New RAT: SideCopy’s Persistent Targeting of Indian Defence
Action RAT

2023-06-15 ⋅ Symantec ⋅ Threat Hunter Team
Shuckworm: Inside Russia’s Relentless Cyber Campaign Against Ukraine
Pteranodon

2023-06-15 ⋅ Mandiant ⋅ Austin Larsen, John Palmisano, John Wolfram, Mathew Potaczek, Matthew McWhirt
Barracuda ESG Zero-Day Vulnerability (CVE-2023-2868) Exploited Globally by Aggressive and Skilled Actor, Suspected Links to China
SALTWATER SEASPY UNC4841

2023-06-15 ⋅ Cado Security ⋅ Cado Security
Tracking Diicot: an emerging Romanian threat actor

2023-06-14 ⋅ PICUS Security ⋅ Sıla Özeren
Picus Cyber Threat Intelligence Report May 2023: Top 10 MITRE ATT&CK Techniques
Earth Longzhi

2023-06-14 ⋅ VulnCheck ⋅ Jacob Baines
Fake Security Researcher GitHub Repositories Deliver Malicious Implant
TorLoader

2023-06-14 ⋅ CISA ⋅ ANSSI, Australian Cyber Security Centre (ACSC), Bundesamt für Sicherheit in der Informationstechnik (BSI), Canadian Centre for Cyber Security (CCCS), CERT NZ, FBI, MS-ISAC, NCSC UK, New Zealand National Cyber Security Centre (NZ NCSC)
Understanding Ransomware Threat Actors: Lockbit
LockBit

2023-06-13 ⋅ Medium BI.ZONE ⋅ Oleg Skulkin
Core Werewolf targets the defense industry and critical infrastructure
Awaken Likho

2023-06-13 ⋅ Outpost24 ⋅ Beatriz Pimenta Klein
ICS attack classifications: differentiating between cyberwarfare, cyberterrorism, and hacktivism
UAC-0118

2023-06-12 ⋅ Sophos ⋅ Karl Ackerman
Deep dive into the Pikabot cyber threat
Pikabot

2023-06-12 ⋅ Kaspersky Labs ⋅ Sergey Lozhkin
Sneaky DoubleFinger loads GreetingGhoul targeting your cryptocurrency
DoubleFinger GreetingGhoul