Malpedia Library

Click here to download all references as Bib-File.•

2018-09-11 ⋅ Bleeping Computer ⋅ Ionut Ilascu
British Airways Fell Victim To Card Scraping Attack
MageCart

2018-09-10 ⋅ Security Boulevard ⋅ Gary Warner
Android Malware Intercepts SMS 2FA: We have the Logs
Anubis

2018-09-10 ⋅ Trend Micro ⋅ Ian Kenefick
A Closer Look at the Locky Poser, PyLocky Ransomware
PyLocky

2018-09-10 ⋅ Youtube ( Monnappa K A) ⋅ Monnappa K A
turla gazer backdoor code injection & winlogon shell persistence
Gazer

2018-09-10 ⋅ SecurityIntelligence ⋅ Limor Kessem, Shahar Tavor
IBM X-Force Delves Into ExoBot’s Leaked Source Code
ExoBot

2018-09-10 ⋅ Kaspersky Labs ⋅ GReAT
LuckyMouse signs malicious NDISProxy driver with certificate of Chinese IT company
Unidentified 080 APT27

2018-09-09 ⋅ Palo Alto Networks Unit 42 ⋅ Ruchna Nigam
Multi-exploit IoT/Linux Botnets Mirai and Gafgyt Target Apache Struts, SonicWall
Bashlite Mirai

2018-09-07 ⋅ Bleeping Computer ⋅ Ionut Ilascu
Domestic Kitten APT Operates in Silence Since 2016
FurBall Domestic Kitten

2018-09-07 ⋅ Vitali Kremez
Let's Learn: Deeper Dive into "IcedID"/"BokBot" Banking Malware: Part 1
IcedID

2018-09-06 ⋅ Department of Justice ⋅ Office of Public Affairs
North Korean Regime-Backed Programmer Charged With Conspiracy to Conduct Multiple Cyber Attacks and Intrusions
Lazarus Group

2018-09-06 ⋅ int 0xcc blog ⋅ Raashid Bhat
Dissecting DEloader malware with obfuscation
Zloader

2018-09-06 ⋅ Palo Alto Networks Unit 42 ⋅ Dominik Reichel, Esmid Idrizovic
Slicing and Dicing CVE-2018-5002 Payloads: New CHAINSHOT Malware
Chainshot

2018-09-05 ⋅ Bleeping Computer ⋅ Ionut Ilascu
Windows Task Scheduler Zero Day Exploited by Malware
PowerPool

2018-09-05 ⋅ ZDNet ⋅ Catalin Cimpanu
New Silence hacking group suspected of having ties to cyber-security industry
Atmosphere

2018-09-05 ⋅ Group-IB ⋅ Group-IB
Silence: Moving into the Darkside
Silence group

2018-09-05 ⋅ ESET Research ⋅ Matthieu Faou
PowerPool malware exploits ALPC LPE zero‑day vulnerability
ALPC Local PrivEsc PowerPool

2018-09-04 ⋅ SecurityIntelligence ⋅ Limor Kessem, Maor Wiesen
CamuBot: New Financial Malware Targets Brazilian Banking Customers
CamuBot

2018-09-03 ⋅ SensorTechForums ⋅ Ventsislav Krastev
.lockymap Files Virus (PyLocky Ransomware) – Remove and Restore Data
PyLocky

2018-09-03 ⋅ ⋅ Cert-UA ⋅ Cert-UA
Bulk mailing of spyware like Pterodo
Pteranodon

2018-09-02 ⋅ Möbius Strip Reverse Engineering ⋅ Rolf Rolles
Weekend Project: A Custom IDA Loader Module For The Hidden Bee Malware Family
Hidden Bee