Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2023-08-29AquasecNitzan Yaakov, Assaf Morag
@online{yaakov:20230829:kinsing:3e620bd, author = {Nitzan Yaakov and Assaf Morag}, title = {{Kinsing Malware Exploits Novel Openfire Vulnerability}}, date = {2023-08-29}, organization = {Aquasec}, url = {https://blog.aquasec.com/kinsing-malware-exploits-novel-openfire-vulnerability}, language = {English}, urldate = {2023-09-05} } Kinsing Malware Exploits Novel Openfire Vulnerability
Kinsing
2023-08-22AhnLabASEC Analysis Team
@online{team:20230822:analyzing:a2e958c, author = {ASEC Analysis Team}, title = {{Analyzing the new attack activity of the Andariel group}}, date = {2023-08-22}, organization = {AhnLab}, url = {https://asec.ahnlab.com/ko/56256/}, language = {Korean}, urldate = {2023-08-28} } Analyzing the new attack activity of the Andariel group
Andardoor MimiKatz QuiteRAT Tiger RAT Volgmer
2023-08-10AhnLabAhnLab ASEC Analysis Team
@online{team:20230810:guloader:3b02e84, author = {AhnLab ASEC Analysis Team}, title = {{GuLoader Malware Disguised as Tax Invoices and Shipping Statements (Detected by MDS Products)}}, date = {2023-08-10}, organization = {AhnLab}, url = {https://asec.ahnlab.com/en/55978/}, language = {English}, urldate = {2023-08-15} } GuLoader Malware Disguised as Tax Invoices and Shipping Statements (Detected by MDS Products)
CloudEyE
2023-08-03AhnLabASEC
@online{asec:20230803:reptile:ee853ee, author = {ASEC}, title = {{Reptile Malware Targeting Linux Systems}}, date = {2023-08-03}, organization = {AhnLab}, url = {https://asec.ahnlab.com/en/55785/}, language = {English}, urldate = {2023-08-07} } Reptile Malware Targeting Linux Systems
Melofee reptile Winnti
2023-08-01AhnLabASEC
@online{asec:20230801:sliver:e32a5e1, author = {ASEC}, title = {{Sliver C2 Being Distributed Through Korean Program Development Company}}, date = {2023-08-01}, organization = {AhnLab}, url = {https://asec.ahnlab.com/en/55652/}, language = {English}, urldate = {2023-08-07} } Sliver C2 Being Distributed Through Korean Program Development Company
Sliver
2023-07-24AhnLabASEC
@online{asec:20230724:lazarus:63cd113, author = {ASEC}, title = {{Lazarus Threat Group Attacking Windows Servers to Use as Malware Distribution Points}}, date = {2023-07-24}, organization = {AhnLab}, url = {https://asec.ahnlab.com/en/55369/}, language = {English}, urldate = {2023-08-07} } Lazarus Threat Group Attacking Windows Servers to Use as Malware Distribution Points
2023-07-11AhnLabASEC
@online{asec:20230711:analysis:d4ec4ec, author = {ASEC}, title = {{Analysis of the Rekoobe Backdoor Being Used In Attacks Against Linux Systems in Korea}}, date = {2023-07-11}, organization = {AhnLab}, url = {https://asec.ahnlab.com/en/55229/}, language = {English}, urldate = {2023-08-07} } Analysis of the Rekoobe Backdoor Being Used In Attacks Against Linux Systems in Korea
Rekoobe
2023-07-03AhnLabASEC
@online{asec:20230703:crysis:3ffd122, author = {ASEC}, title = {{Crysis Threat Actor Installing Venus Ransomware Through RDP}}, date = {2023-07-03}, organization = {AhnLab}, url = {https://asec.ahnlab.com/en/54937/}, language = {English}, urldate = {2023-08-07} } Crysis Threat Actor Installing Venus Ransomware Through RDP
Dharma
2023-06-20AhnLabASEC
@online{asec:20230620:tsunami:bbf63b6, author = {ASEC}, title = {{Tsunami DDoS Malware Distributed to Linux SSH Servers}}, date = {2023-06-20}, organization = {AhnLab}, url = {https://asec.ahnlab.com/en/54647/}, language = {English}, urldate = {2023-08-07} } Tsunami DDoS Malware Distributed to Linux SSH Servers
PerlBot Tsunami
2023-06-08AhnLabASEC Analysis Team
@online{team:20230608:lazarus:e8fb47d, author = {ASEC Analysis Team}, title = {{Lazarus Group exploiting vulnerabilities in domestic financial security solutions}}, date = {2023-06-08}, organization = {AhnLab}, url = {https://asec.ahnlab.com/ko/53832/}, language = {Korean}, urldate = {2023-06-12} } Lazarus Group exploiting vulnerabilities in domestic financial security solutions
LazarDoor LazarLoader
2023-05-23AhnLabASEC
@online{asec:20230523:darkcloud:cbd48ff, author = {ASEC}, title = {{DarkCloud Infostealer Being Distributed via Spam Emails}}, date = {2023-05-23}, organization = {AhnLab}, url = {https://asec.ahnlab.com/en/53128/}, language = {English}, urldate = {2023-08-07} } DarkCloud Infostealer Being Distributed via Spam Emails
DarkCloud Stealer
2023-05-22AhnLabASEC
@online{asec:20230522:kimsuky:6007eeb, author = {ASEC}, title = {{Kimsuky Group Using Meterpreter to Attack Web Servers}}, date = {2023-05-22}, organization = {AhnLab}, url = {https://asec.ahnlab.com/en/53046/}, language = {English}, urldate = {2023-08-07} } Kimsuky Group Using Meterpreter to Attack Web Servers
Kimsuky Meterpreter
2023-05-18AhnLabASEC
@online{asec:20230518:sparkrat:f283ffc, author = {ASEC}, title = {{SparkRAT Being Distributed Within a Korean VPN Installer}}, date = {2023-05-18}, organization = {AhnLab}, url = {https://asec.ahnlab.com/en/52899/}, language = {English}, urldate = {2023-08-07} } SparkRAT Being Distributed Within a Korean VPN Installer
SparkRAT
2023-05-15AhnLabAhnLab ASEC Analysis Team
@online{team:20230515:lokilocker:684344c, author = {AhnLab ASEC Analysis Team}, title = {{LokiLocker, a Ransomware Similar to BlackBit Being Distributed in Korea}}, date = {2023-05-15}, organization = {AhnLab}, url = {https://asec.ahnlab.com/en/52570/}, language = {English}, urldate = {2023-06-12} } LokiLocker, a Ransomware Similar to BlackBit Being Distributed in Korea
LokiLocker
2023-05-03AhnLabASEC
@online{asec:20230503:recordbreaker:402a5e6, author = {ASEC}, title = {{RecordBreaker Stealer Distributed via Hacked YouTube Accounts}}, date = {2023-05-03}, organization = {AhnLab}, url = {https://asec.ahnlab.com/en/52072/}, language = {English}, urldate = {2023-08-07} } RecordBreaker Stealer Distributed via Hacked YouTube Accounts
RecordBreaker
2023-04-17AhnLabASEC
@online{asec:20230417:trigona:7dcaf83, author = {ASEC}, title = {{Trigona Ransomware Attacking MS-SQL Servers}}, date = {2023-04-17}, organization = {AhnLab}, url = {https://asec.ahnlab.com/en/51343/}, language = {English}, urldate = {2023-08-07} } Trigona Ransomware Attacking MS-SQL Servers
Trigona
2023-03-17AhnLabASEC
@online{asec:20230317:shellbot:93d3ae5, author = {ASEC}, title = {{ShellBot Malware Being Distributed to Linux SSH Servers}}, date = {2023-03-17}, organization = {AhnLab}, url = {https://asec.ahnlab.com/en/49769/}, language = {English}, urldate = {2023-03-20} } ShellBot Malware Being Distributed to Linux SSH Servers
PerlBot
2023-03-09ASECSanseo
@online{sanseo:20230309:plugx:4683b0e, author = {Sanseo}, title = {{PlugX Malware Being Distributed via Vulnerability Exploitation}}, date = {2023-03-09}, organization = {ASEC}, url = {https://asec.ahnlab.com/en/49097/}, language = {English}, urldate = {2023-03-17} } PlugX Malware Being Distributed via Vulnerability Exploitation
PlugX
2023-03-08AhnLabASEC
@online{asec:20230308:globeimposter:2a15455, author = {ASEC}, title = {{GlobeImposter Ransomware Being Distributed with MedusaLocker via RDP}}, date = {2023-03-08}, organization = {AhnLab}, url = {https://asec.ahnlab.com/en/48940/}, language = {English}, urldate = {2023-03-20} } GlobeImposter Ransomware Being Distributed with MedusaLocker via RDP
GlobeImposter MedusaLocker
2023-02-15AhnLabASEC
@online{asec:20230215:paradise:0db313d, author = {ASEC}, title = {{Paradise Ransomware Distributed Through AweSun Vulnerability Exploitation}}, date = {2023-02-15}, organization = {AhnLab}, url = {https://asec.ahnlab.com/en/47590/}, language = {English}, urldate = {2023-03-20} } Paradise Ransomware Distributed Through AweSun Vulnerability Exploitation
Paradise