Malpedia Library

Click here to download all references as Bib-File.•

2022-07-19 ⋅ Recorded Future ⋅ Insikt Group®
Amid Rising Magecart Attacks on Online Ordering Platforms, Recent Campaigns Infect 311 Restaurants
magecart

2022-07-19 ⋅ Google ⋅ Billy Leonard
Continued cyber activity in Eastern Europe observed by TAG
CyberAzov

2022-07-19 ⋅ ⋅ CERT Poland ⋅ CERT Poland
Development of UNC1151/Ghostwriter attack techniques

2022-07-19 ⋅ ⋅ Cert-AgID ⋅ Cert-AgID
Analysis and technical insights on the Coper malware used to attack mobile devices
Coper

2022-07-19 ⋅ Fortinet ⋅ Xiaopeng Zhang
New Variant of QakBot Being Spread by HTML File Attached to Phishing Emails
QakBot

2022-07-19 ⋅ ESET Research ⋅ Marc-Etienne M.Léveillé
I see what you did there: A look at the CloudMensis macOS spyware
CloudMensis

2022-07-19 ⋅ Palo Alto Networks Unit 42 ⋅ Mike Harbison, Peter Renals
Russian APT29 Hackers Use Online Storage Services, DropBox and Google Drive
Cobalt Strike EnvyScout Gdrive

2022-07-18 ⋅ NetWitness ⋅ Stefano Maccaglia, Will Gragido
FIN13 (Elephant Beetle): Viva la Threat! Anatomy of a Fintech Attack
FIN13

2022-07-18 ⋅ SecurityScorecard ⋅ Vlad Pasca
A Deep Dive Into ALPHV/BlackCat Ransomware
BlackCat

2022-07-17 ⋅ The Times of Israel ⋅ TOI Staff
Cyberattack on Health Ministry website blocks overseas access
Altahrea Team

2022-07-17 ⋅ Resecurity ⋅ Resecurity
Shortcut-Based (LNK) Attacks Delivering Malicious Code On The Rise
AsyncRAT BumbleBee Emotet IcedID QakBot

2022-07-14 ⋅ Sophos ⋅ Andrew Brandt, Andy French, Bill Kearney, Elida Leite, Harinder Bhathal, Lee Kirkpatrick, Peter Mackenzie, Robert Weiland, Sergio Bestulic
BlackCat ransomware attacks not merely a byproduct of bad luck
BlackCat BlackCat

2022-07-14 ⋅ ⋅ Cert-UA ⋅ Cert-UA
UAC-0100 - Online fraud using the subject of "monetary compensation" (CERT-UA#4964)

2022-07-14 ⋅ Dragos ⋅ Sam Hanson
The Trojan Horse Malware & Password “Cracking” Ecosystem Targeting Industrial Operators
Sality

2022-07-14 ⋅ Blackberry ⋅ The BlackBerry Research & Intelligence Team
GootLoader, From SEO Poisoning to Multi-Stage Downloader
GootLoader

2022-07-14 ⋅ Proofpoint ⋅ Crista Giering, Joshua Miller, Michael Raggi, Proofpoint Threat Research Team
Above the Fold and in Your Inbox: Tracing State-Aligned Activity Targeting Journalists, Media
Chinoxy APT31 Lazarus Group TA482

2022-07-14 ⋅ Cloudflare ⋅ Omer Yoachimik
Mantis - the most powerful botnet to date

2022-07-14 ⋅ Microsoft ⋅ Microsoft Digital Security Unit (DSU), Microsoft Threat Intelligence Center (MSTIC)
North Korean threat actor (H0lyGh0st /DEV-0530) targets small and midsize businesses with H0lyGh0st ransomware
SiennaBlue SiennaPurple Storm-0530

2022-07-13 ⋅ Microsoft ⋅ Jonathan Bar Or, Microsoft 365 Defender Research Team
Uncovering a macOS App Sandbox escape vulnerability: A deep dive into CVE-2022-26706

2022-07-13 ⋅ NCC Group ⋅ RIFT: Research and Intelligence Fusion Team
Climbing Mount Everest: Black-Byte Bytes Back?
BlackByte