Malpedia Library

Click here to download all references as Bib-File.•

2024-04-22 ⋅ Security Affairs ⋅ Pierluigi Paganini
Hackers threaten to leak a copy of the World-Check database used to assess potential risks associated with entities
GhostR

2024-04-22 ⋅ Mandiant ⋅ Mandiant
M-Trends 2024 Special Report
UNC4393

2024-04-22 ⋅ Microsoft ⋅ Microsoft Threat Intelligence
Analyzing Forest Blizzard’s custom post-compromise tool for exploiting CVE-2022-38028 to obtain credentials
GooseEgg

2024-04-22 ⋅ Wired ⋅ Matt Burgess
North Koreans Secretly Animated Amazon and Max Shows, Researchers Say

2024-04-22 ⋅ HarfangLab ⋅ HarfangLab CTR
MuddyWater campaign abusing Atera Agents

2024-04-21 ⋅ Trend Micro ⋅ Nathaniel Morales, Sarah Pearl Camiling
FOG Ransomware Spread by Cybercriminals Claiming Ties to DOGE
Fog

2024-04-20 ⋅ Axel's IT Security Research ⋅ Axel Mahr
New Robust Technique for Reliably Identifying AsyncRAT/DcRAT/VenomRAT Servers
AsyncRAT DCRat Venom RAT

2024-04-19 ⋅ TEAMT5 ⋅ Charles Li, Che Chang, Greg Chen
Chinese APT: A Master of Exploiting Edge Devices
SEASPY UNC4841

2024-04-19 ⋅ ⋅ Cert-UA ⋅ Cert-UA
UAC-0133 (Sandworm) plans for cyber sabotage on almost 20 objects of critical infrastructure of Ukraine
Kapeka reGeorg

2024-04-19 ⋅ Raffaele Sabato
Gold Pickaxe iOS Technical Analysis: IPA Overview and C2 Communication Start up

2024-04-19 ⋅ dissect.ing ⋅ Scottish Fold
Exploiting a cryptographic vulnerability inside the Donex Ransomware
Donex

2024-04-19 ⋅ DARKReading ⋅ Nate Nelson
Evil XDR: Researcher Turns Palo Alto Software Into Perfect Malware

2024-04-19 ⋅ YouTube (Decipher) ⋅ Dan Black, Gabby Roncone, Lindsey O’Donnell-Welch
A Decade of Sandworm: Digging into APT44’s Past and Future With Mandiant

2024-04-19 ⋅ Medium MITRE-Engenuity ⋅ Charles Clancy, Lex Crumpton
Advanced Cyber Threats Impact Even the Most Prepared

2024-04-19 ⋅ ThreatMon ⋅ ThreatMon, ThreatMon Malware Research Team
APT44: The Famous Sandworm of Russia

2024-04-19 ⋅ ⋅ Spiegel Online ⋅ Christoph Giesen, Hakan Tanriverdi, Simon Hage
VW-Konzern wurde jahrelang ausspioniert – von China?
CHINACHOPPER PlugX

2024-04-18 ⋅ ⋅ Cert-UA ⋅ Cert-UA
UAC-0149 cyberattack exploiting Signal, CVE-2023-38831 vulnerability, and COOKBOX malware (CERT-UA#9522)
COOKBOX

2024-04-18 ⋅ Avast ⋅ Luigino Camastra
From BYOVD to a 0-day: Unveiling Advanced Exploits in Cyber Recruiting Scams
FudModule

2024-04-18 ⋅ EchoCTI ⋅ Bilal BAKARTEPE, bixploit
Turla APT Analysis with TinyTurla-NG
TinyTurlaNG

2024-04-17 ⋅ Mandiant ⋅ Alden Wahlstrom, Anton Prokopenkov, Dan Black, Dan Perez, Gabby Roncone, John Wolfram, Lexie Aytes, Luke Jenkins, Nick Simonian, Ryan Hall, Tyler McLellan
Unearthing APT44: Russia’s Notorious Cyber Sabotage Unit Sandworm
Sandworm