Malpedia Library

Click here to download all references as Bib-File.•

2021-09-23 ⋅ Google ⋅ Google Threat Analysis Group, Neel Mehta
Financially motivated actor breaks certificate parsing to avoid detection
OpenSUpdater

2021-09-23 ⋅ Sophos ⋅ Sean Gallagher
Phishing and malware actors abuse Google Forms for credentials, data exfiltration

2021-07-14 ⋅ Google ⋅ Clement Lecigne, Google Threat Analysis Group, Maddie Stone
How We Protect Users From 0-Day Attacks (CVE-2021-21166, CVE-2021-30551, CVE-2021-33742, CVE-2021-1879)
Cobalt Strike

2021-06-02 ⋅ Morphisec ⋅ Michael Gorelik
Google PPC Ads Deliver Redline, Taurus, and mini-Redline Infostealers
RedLine Stealer Taurus Stealer

2021-05-26 ⋅ RiskIQ ⋅ Jordan Herman
The MobileInter Skimmer: Hosted by Google, Hiding in Images

2021-05-06 ⋅ Group-IB ⋅ Viktor Okorokov
GrelosGTM group abuses Google Tag Manager to attack e-commerce websites

2021-03-31 ⋅ Google ⋅ Adam Weidemann, Google Threat Analysis Group
Update on campaign targeting security researchers

2021-03-26 ⋅ MIT Technology Review ⋅ Patrick Howell O'Neill
Google’s top security teams unilaterally shut down a counterterrorism operation

2021-03-25 ⋅ Google Project Zero ⋅ Anthony Weems, Dallas Kaman, Michael Weber
CVE-2021-26855: Microsoft Exchange Server-Side Request Forgery

2021-03-09 ⋅ Check Point Research ⋅ Aviran Hazum, Bohdan Melnykov, Israel Wernik
Clast82 – A new Dropper on Google Play Dropping the AlienBot Banker and MRAT
Alien

2021-02-16 ⋅ Google ⋅ Google Threat Analysis Group, Shane Huntley
TAG Bulletin: Q1 2021

2021-02-04 ⋅ InfoSec Handlers Diary Blog ⋅ Bojan Zdrnja
Abusing Google Chrome extension syncing for data exfiltration and C&C

2021-02-03 ⋅ Google Project Zero ⋅ Maddie Stone
Déjà vu-lnerability A Year in Review of 0-days Exploited In-The-Wild in 2020

2021-01-28 ⋅ Google Project Zero ⋅ Samuel Groß
A Look at iMessage in iOS 14

2021-01-27 ⋅ S2W LAB Inc. ⋅ Sojun Ryu
Analysis of THREATNEEDLE C&C Communication (feat. Google TAG Warning to Researchers)
Volgmer

2021-01-25 ⋅ Google ⋅ Adam Weidemann
New campaign targeting security researchers
ComeBacker DRATzarus

2021-01-15 ⋅ Google ⋅ Heather Adkins, Phil Venables
How we’re helping to reshape the software supply chain ecosystem securely

2021-01-01 ⋅ Google ⋅ Fabian Kaczmarczyck
Burning the Haystack: Malware Lead Generation at Scale

2020-12-21 ⋅ US Court of Appeals for the Ninth Court ⋅ Cisco, Github, Google, Internet Association, LinkedIn, Microsoft, VMWare, WhatsApp
Case: 20-16408: WhatsApp et al. vs NSO Group

2020-12-15 ⋅ Google Project Zero ⋅ Ian Beer, Samuel Groß
A deep dive into an NSO zero-click iMessage exploit: Remote Code Execution
Chrysaor