Malpedia Library

Click here to download all references as Bib-File.•

2023-09-20 ⋅ Cado Security ⋅ Matt Muir
Cado Security Labs Researchers Witness a 600X Increase in P2Pinfect Traffic
P2Pinfect

2023-09-20 ⋅ SOCRadar ⋅ SOCRadar
Unmasking USDoD: The Enigma of the Cyber Realm
RansomVC USDoD

2023-09-20 ⋅ Check Point Research ⋅ Checkpoint Research
Behind the Scenes of BBTok: Analyzing a Banker’s Server Side Components
BBtok

2023-09-20 ⋅ Proofpoint ⋅ Proofpoint Threat Research Team
Chinese Malware Appears in Earnest Across Cybercrime Threat Landscape
FatalRat PurpleFox ValleyRAT

2023-09-19 ⋅ Recorded Future ⋅ Insikt Group
Multi-year Chinese APT Campaign Targets South Korean Academic, Government, and Political Entities
Korlia Tonto Team

2023-09-19 ⋅ Cisco Talos ⋅ Arnaud Zobec, Asheer Malhotra, Caitlin Huey, Sean Taylor, Vitor Ventura
New ShroudedSnooper actor targets telecommunications firms in the Middle East with novel Implants
HTTPSnoop PipeSnoop LightBasin ShroudedSnooper

2023-09-19 ⋅ Checkpoint ⋅ Alexey Bukhteyev, Arie Olshtein
Unveiling the Shadows: The Dark Alliance between GuLoader and Remcos
CloudEyE Remcos

2023-09-19 ⋅ Medium (@DCSO_CyTec) ⋅ Johann Aydinbas
#ShortAndMalicious — DarkGate
DarkGate

2023-09-18 ⋅ The Record ⋅ Jonathan Greig
"Scattered Spider" group launches ransomware attacks while expanding targets in hospitality, retail
RedLine Stealer

2023-09-18 ⋅ Alpine Security ⋅ Borja Merino
HijackLoader Targets Hotels: A Technical Analysis
HijackLoader

2023-09-18 ⋅ KrebsOnSecurity ⋅ Brian Krebs
Who's Behind the 8Base Ransomware Website?
8Base

2023-09-18 ⋅ SentinelOne ⋅ Alex Delamotte
CapraTube | Transparent Tribe’s CapraRAT Mimics YouTube to Hijack Android Phones
CapraRAT Operation C-Major

2023-09-18 ⋅ Trend Micro ⋅ Jaromír Hořejší, Joseph Chen
Earth Lusca Employs New Linux Backdoor, Uses Cobalt Strike for Lateral Movement
SprySOCKS

2023-09-15 ⋅ paloalto Netoworks: Unit42 ⋅ Amer Elsad, Austin Dever, Kristopher Russo
Threat Group Assessment: Muddled Libra

2023-09-15 ⋅ Johannes Bader's Blog ⋅ Johannes Bader
The DGA of BumbleBee
BumbleBee

2023-09-15 ⋅ Migeel.sk ⋅ Michal Strehovský
Reverse engineering natively-compiled .NET apps

2023-09-15 ⋅ CyberCX ⋅ Phill Moore, Suyash Tripathi, Yogesh Khatri, Zach Stanford
Weaponising VMs to bypass EDR – Akira ransomware
Akira

2023-09-14 ⋅ Microsoft ⋅ Microsoft Threat Intelligence
Peach Sandstorm password spray campaigns enable intelligence collection at high-value targets
APT33

2023-09-14 ⋅ Sekoia ⋅ Livia Tibirna
Sekoia.io mid-2023 Ransomware Threat Landscape
8Base Akira Cactus Storm-1567

2023-09-14 ⋅ Deep instinct ⋅ Mark Vaitzman, Ron Ben Yizhak, Simon Kenin
Operation Rusty Flag – A Malicious Campaign Against Azerbaijanian Targets
Unidentified 110 (RustyFlag)