Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2022-05-22Bleeping ComputerBill Toulas
@online{toulas:20220522:pdf:f2a1ce7, author = {Bill Toulas}, title = {{PDF smuggles Microsoft Word doc to drop Snake Keylogger malware}}, date = {2022-05-22}, organization = {Bleeping Computer}, url = {https://www.bleepingcomputer.com/news/security/pdf-smuggles-microsoft-word-doc-to-drop-snake-keylogger-malware/}, language = {English}, urldate = {2022-05-24} } PDF smuggles Microsoft Word doc to drop Snake Keylogger malware
404 Keylogger
2022-05-16Bleeping ComputerBill Toulas
@online{toulas:20220516:ukraine:ed187f0, author = {Bill Toulas}, title = {{Ukraine supporters in Germany targeted with PowerShell RAT malware}}, date = {2022-05-16}, organization = {Bleeping Computer}, url = {https://www.bleepingcomputer.com/news/security/ukraine-supporters-in-germany-targeted-with-powershell-rat-malware/}, language = {English}, urldate = {2022-05-17} } Ukraine supporters in Germany targeted with PowerShell RAT malware
2022-05-12Bleeping ComputerBill Toulas
@online{toulas:20220512:eternity:2e4b012, author = {Bill Toulas}, title = {{Eternity malware kit offers stealer, miner, worm, ransomware tools}}, date = {2022-05-12}, organization = {Bleeping Computer}, url = {https://www.bleepingcomputer.com/news/security/eternity-malware-kit-offers-stealer-miner-worm-ransomware-tools/}, language = {English}, urldate = {2022-05-25} } Eternity malware kit offers stealer, miner, worm, ransomware tools
Eternity Clipper Eternity Ransomware Eternity Worm
2022-04-20Bleeping ComputerBill Toulas
@online{toulas:20220420:microsoft:c1073df, author = {Bill Toulas}, title = {{Microsoft Exchange servers hacked to deploy Hive ransomware}}, date = {2022-04-20}, organization = {Bleeping Computer}, url = {https://www.bleepingcomputer.com/news/security/microsoft-exchange-servers-hacked-to-deploy-hive-ransomware/}, language = {English}, urldate = {2022-04-24} } Microsoft Exchange servers hacked to deploy Hive ransomware
Babuk BlackByte Conti Hive LockFile
2022-04-19Bleeping ComputerBill Toulas
@online{toulas:20220419:emotet:a7e392d, author = {Bill Toulas}, title = {{Emotet botnet switches to 64-bit modules, increases activity}}, date = {2022-04-19}, organization = {Bleeping Computer}, url = {https://www.bleepingcomputer.com/news/security/emotet-botnet-switches-to-64-bit-modules-increases-activity/}, language = {English}, urldate = {2022-04-20} } Emotet botnet switches to 64-bit modules, increases activity
Emotet
2022-04-18Bleeping ComputerBill Toulas
@online{toulas:20220418:unofficial:c8e9480, author = {Bill Toulas}, title = {{Unofficial Windows 11 upgrade installs info-stealing malware}}, date = {2022-04-18}, organization = {Bleeping Computer}, url = {https://www.bleepingcomputer.com/news/security/unofficial-windows-11-upgrade-installs-info-stealing-malware/}, language = {English}, urldate = {2022-04-20} } Unofficial Windows 11 upgrade installs info-stealing malware
2022-04-14Bleeping ComputerBill Toulas
@online{toulas:20220414:new:049e894, author = {Bill Toulas}, title = {{New ZingoStealer infostealer drops more malware, cryptominers}}, date = {2022-04-14}, organization = {Bleeping Computer}, url = {https://www.bleepingcomputer.com/news/security/new-zingostealer-infostealer-drops-more-malware-cryptominers/}, language = {English}, urldate = {2022-04-15} } New ZingoStealer infostealer drops more malware, cryptominers
2022-04-14Bleeping ComputerBill Toulas
@online{toulas:20220414:hackers:2b1153c, author = {Bill Toulas}, title = {{Hackers target Ukrainian govt with IcedID malware, Zimbra exploits}}, date = {2022-04-14}, organization = {Bleeping Computer}, url = {https://www.bleepingcomputer.com/news/security/hackers-target-ukrainian-govt-with-icedid-malware-zimbra-exploits/}, language = {English}, urldate = {2022-04-15} } Hackers target Ukrainian govt with IcedID malware, Zimbra exploits
IcedID
2022-04-10Bleeping ComputerBill Toulas
@online{toulas:20220410:new:1241933, author = {Bill Toulas}, title = {{New Meta information stealer distributed in malspam campaign}}, date = {2022-04-10}, organization = {Bleeping Computer}, url = {https://www.bleepingcomputer.com/news/security/new-meta-information-stealer-distributed-in-malspam-campaign/}, language = {English}, urldate = {2022-05-05} } New Meta information stealer distributed in malspam campaign
BlackGuard Mars Stealer Raccoon
2022-04-09Bleeping ComputerBill Toulas
@online{toulas:20220409:new:e5e0f1d, author = {Bill Toulas}, title = {{New Android banking malware remotely takes control of your device}}, date = {2022-04-09}, organization = {Bleeping Computer}, url = {https://www.bleepingcomputer.com/news/security/new-android-banking-malware-remotely-takes-control-of-your-device/}, language = {English}, urldate = {2022-06-09} } New Android banking malware remotely takes control of your device
Coper ExoBot
2022-04-07Bleeping ComputerBill Toulas
@online{toulas:20220407:malicious:f10fb8e, author = {Bill Toulas}, title = {{Malicious web redirect service infects 16,500 sites to push malware}}, date = {2022-04-07}, organization = {Bleeping Computer}, url = {https://www.bleepingcomputer.com/news/security/malicious-web-redirect-service-infects-16-500-sites-to-push-malware/}, language = {English}, urldate = {2022-04-12} } Malicious web redirect service infects 16,500 sites to push malware
NetSupportManager RAT
2022-04-03Bleeping ComputerBill Toulas
@online{toulas:20220403:new:526c2ba, author = {Bill Toulas}, title = {{New Borat remote access malware is no laughing matter}}, date = {2022-04-03}, organization = {Bleeping Computer}, url = {https://www.bleepingcomputer.com/news/security/new-borat-remote-access-malware-is-no-laughing-matter/}, language = {English}, urldate = {2022-04-04} } New Borat remote access malware is no laughing matter
Borat RAT
2022-04-01Bleeping ComputerBill Toulas
@online{toulas:20220401:newly:dd6e7e2, author = {Bill Toulas}, title = {{Newly found Android malware records audio, tracks your location}}, date = {2022-04-01}, organization = {Bleeping Computer}, url = {https://www.bleepingcomputer.com/news/security/newly-found-android-malware-records-audio-tracks-your-location/}, language = {English}, urldate = {2022-04-12} } Newly found Android malware records audio, tracks your location
2022-03-31Bleeping ComputerBill Toulas
@online{toulas:20220331:new:c99804a, author = {Bill Toulas}, title = {{New BlackGuard password-stealing malware sold on hacker forums}}, date = {2022-03-31}, organization = {Bleeping Computer}, url = {https://www.bleepingcomputer.com/news/security/new-blackguard-password-stealing-malware-sold-on-hacker-forums/}, language = {English}, urldate = {2022-04-05} } New BlackGuard password-stealing malware sold on hacker forums
BlackGuard
2022-03-31Bleeping ComputerBill Toulas
@online{toulas:20220331:lockbit:b93bcef, author = {Bill Toulas}, title = {{LockBit victim estimates cost of ransomware attack to be $42 million}}, date = {2022-03-31}, organization = {Bleeping Computer}, url = {https://www.bleepingcomputer.com/news/security/lockbit-victim-estimates-cost-of-ransomware-attack-to-be-42-million/}, language = {English}, urldate = {2022-04-04} } LockBit victim estimates cost of ransomware attack to be $42 million
LockBit LockBit
2022-03-30Bleeping ComputerBill Toulas
@online{toulas:20220330:hive:2c0ba4d, author = {Bill Toulas}, title = {{Hive ransomware uses new 'IPfuscation' trick to hide payload}}, date = {2022-03-30}, organization = {Bleeping Computer}, url = {https://www.bleepingcomputer.com/news/security/hive-ransomware-uses-new-ipfuscation-trick-to-hide-payload/}, language = {English}, urldate = {2022-03-31} } Hive ransomware uses new 'IPfuscation' trick to hide payload
Hive
2022-03-30Bleeping ComputerBill Toulas
@online{toulas:20220330:phishing:035d666, author = {Bill Toulas}, title = {{Phishing campaign targets Russian govt dissidents with Cobalt Strike}}, date = {2022-03-30}, organization = {Bleeping Computer}, url = {https://www.bleepingcomputer.com/news/security/phishing-campaign-targets-russian-govt-dissidents-with-cobalt-strike/}, language = {English}, urldate = {2022-03-31} } Phishing campaign targets Russian govt dissidents with Cobalt Strike
Unidentified PS 002 (RAT) Cobalt Strike
2022-03-29Bleeping ComputerBill Toulas
@online{toulas:20220329:hackers:06380e1, author = {Bill Toulas}, title = {{Hackers use modified MFA tool against Indian govt employees}}, date = {2022-03-29}, organization = {Bleeping Computer}, url = {https://www.bleepingcomputer.com/news/security/hackers-use-modified-mfa-tool-against-indian-govt-employees/}, language = {English}, urldate = {2022-03-30} } Hackers use modified MFA tool against Indian govt employees
Crimson RAT Oblique RAT
2022-03-28Bleeping ComputerBill Toulas
@online{toulas:20220328:microsoft:5bc32d1, author = {Bill Toulas}, title = {{Microsoft Exchange targeted for IcedID reply-chain hijacking attacks}}, date = {2022-03-28}, organization = {Bleeping Computer}, url = {https://www.bleepingcomputer.com/news/security/microsoft-exchange-targeted-for-icedid-reply-chain-hijacking-attacks/}, language = {English}, urldate = {2022-03-30} } Microsoft Exchange targeted for IcedID reply-chain hijacking attacks
IcedID
2022-03-28Bleeping ComputerBill Toulas
@online{toulas:20220328:suncrypt:27f9b79, author = {Bill Toulas}, title = {{SunCrypt ransomware is still alive and kicking in 2022}}, date = {2022-03-28}, organization = {Bleeping Computer}, url = {https://www.bleepingcomputer.com/news/security/suncrypt-ransomware-is-still-alive-and-kicking-in-2022/}, language = {English}, urldate = {2022-03-29} } SunCrypt ransomware is still alive and kicking in 2022
SunCrypt