Malpedia Library

Click here to download all references as Bib-File.•

2023-09-14 ⋅ Sekoia ⋅ Livia Tibirna
Sekoia.io mid-2023 Ransomware Threat Landscape
8Base Akira Cactus Storm-1567

2023-09-14 ⋅ Deep instinct ⋅ Mark Vaitzman, Ron Ben Yizhak, Simon Kenin
Operation Rusty Flag – A Malicious Campaign Against Azerbaijanian Targets
Unidentified 110 (RustyFlag)

2023-09-13 ⋅ KrebsOnSecurity ⋅ Brian Krebs
FBI Hacker Dropped Stolen Airbus Data on 9/11
RedLine Stealer USDoD

2023-09-13 ⋅ Seebug Paper ⋅ Nan, XWS
Analysis of the recent offensive operations conducted by North Korean APT groups
Opal Sleet

2023-09-12 ⋅ FIRSTCON ⋅ Aditya K. Sood
Compromising the Keys to the Kingdom: Exfiltrating Data to Own and Operate the Exploited Systems (Slides)
Loki RAT SystemBC

2023-09-12 ⋅ Sekoia ⋅ Livia Tibirna, Maxime A
The Transportation sector cyber threat overview
Cyber Partisans

2023-09-12 ⋅ Security Intelligence ⋅ Golo Mühr, Kat Metrick, Ole Villadsen
Email campaigns leverage updated DBatLoader to deliver RATs, stealers
DBatLoader

2023-09-12 ⋅ Zscaler ⋅ Sudeep Singh
A peek into APT36’s updated arsenal
ElizaRAT

2023-09-11 ⋅ Github (m4now4r) ⋅ m4n0w4r
Unveiling Qakbot Exploring one of the Most Active Threat Actors
QakBot

2023-09-11 ⋅ NCC Group ⋅ Alberto Segura, Joshua Kamp
From ERMAC to Hook: Investigating the technical differences between two Android malware variants
ERMAC Hook

2023-09-11 ⋅ AhnLab ⋅ Sanseo
BlueShell Used in APT Attacks Against Korean and Thai Targets
BlueShell Sliver Dalbit

2023-09-11 ⋅ Kaspersky ⋅ Alexander Kirichenko, Gleb Ivanov
From Caribbean shores to your devices: analyzing Cuba ransomware
Cuba

2023-09-08 ⋅ PolySwarm Tech Team ⋅ The Hivemind
Carderbee Targets Hong Kong in Supply Chain Attack
PlugX Carderbee

2023-09-08 ⋅ K7 Security ⋅ Sudeep Waingankar
RomCom RAT: Not Your Typical Love Story
ROMCOM RAT RomCom

2023-09-08 ⋅ Zscaler ⋅ Zscaler
Technical Analysis of HijackLoader
HijackLoader

2023-09-07 ⋅ SecurityIntelligence ⋅ Claire Zaboeva, Golo Mühr, Melissa Frydrych
New Hive0117 phishing campaign imitates conscription summons to deliver DarkWatchman malware
DarkWatchman

2023-09-07 ⋅ KNF CSIRT ⋅ Karol Paciorek
RANSOMED[.]VC - forum, ransomware or hacktivists?

2023-09-07 ⋅ Twitter (@Intrisec) ⋅ CTI Intrinsec
Tweets on Bumblebee campaign spreading via Html smuggling downloading RAR archive with European Central Bank PDF lure and folder containing Bumblebee EXE payload.
BumbleBee

2023-09-07 ⋅ Medium (@simone.kraus) ⋅ Simone Kraus
Critical Energy Infrastructure Facility Attack In Ukraine

2023-09-07 ⋅ CISA ⋅ CISA
MAR-10454006.r5.v1 SUBMARINE, SKIPJACK, SEASPRAY, WHIRLPOOL, and SALTWATER Backdoors
WHIRLPOOL