Malpedia Library

Click here to download all references as Bib-File.

2022-10-21 ⋅ CISA ⋅ US-CERT, HHS, FBI
Alert (AA22-294A) #StopRansomware: Daixin Team

2022-10-06 ⋅ CISA ⋅ US-CERT, NSA, FBI
Alert (AA22-279A) Top CVEs Actively Exploited By People’s Republic of China State-Sponsored Cyber Actors

2022-09-21 ⋅ CISA ⋅ FBI, CISA
AA22-264A: Iranian State Actors Conduct Cyber Operations Against the Government of Albania (PDF)
Unidentified 095 (Iranian Wiper)

2022-09-21 ⋅ CISA ⋅ FBI, CISA
Alert (AA22-264A) Iranian State Actors Conduct Cyber Operations Against the Government of Albania
Unidentified 095 (Iranian Wiper)

2022-09-14 ⋅ CISA ⋅ FBI, US-CERT, NSA, U.S. Cyber Command, U.S. Department of the Treasury, Australian Cyber Security Centre (ACSC), CSE Canada, NCSC UK
Alert (AA22-257A): Iranian Islamic Revolutionary Guard Corps-Affiliated Cyber Actors Exploiting Vulnerabilities for Data Extortion and Disk Encryption for Ransom Operations

2022-09-06 ⋅ CISA ⋅ US-CERT, FBI, CISA, MS-ISAC
Alert (AA22-249A) #StopRansomware: Vice Society
Cobalt Strike Empire Downloader FiveHands HelloKitty SystemBC Zeppelin

2022-08-11 ⋅ CISA ⋅ CISA, FBI
Alert (AA22-223A) #StopRansomware: Zeppelin Ransomware
Zeppelin

2022-08-11 ⋅ CISA ⋅ FBI, CISA
#StopRansomware: Zeppelin Ransomware (PDF)
Zeppelin

2022-07-06 ⋅ CISA ⋅ FBI, CISA, Department of the Treasury (Treasury)
CSA AA22-187A: North Korean State-Sponsored Cyber Actors Use Maui Ransomware to Target the Healthcare and Public Health Sector (PDF)
Maui Ransomware

2022-07-06 ⋅ CISA ⋅ FBI, CISA, Department of the Treasury (Treasury)
Alert (AA22-187A): North Korean State-Sponsored Cyber Actors Use Maui Ransomware to Target the Healthcare and Public Health Sector
Maui Ransomware

2022-07-01 ⋅ CISA ⋅ CISA, FBI, Department of the Treasury (Treasury), FINCEN
Alert (AA22-181A): #StopRansomware: MedusaLocker
MedusaLocker

2022-06-30 ⋅ CISA ⋅ CISA, FBI, Department of the Treasury (Treasury), FINCEN
CSA (AA22-181A): #StopRansomware: MedusaLocker
MedusaLocker

2022-06-01 ⋅ CISA ⋅ CISA, FBI, Department of the Treasury (Treasury), FINCEN
Alert (AA22-152A): Karakurt Data Extortion Group
MimiKatz

2022-06-01 ⋅ CISA ⋅ FBI, CISA, Department of the Treasury (Treasury), FINCEN
Joint Cybersecurity Advisory (Product ID AA22-152A): Karakurt Data Extortion Group
MimiKatz

2022-05-16 ⋅ FBI ⋅ FBI
FBI Flash MC-000170-MW: Cyber Actors Scrape Credit Card Data from US Business’ Online Checkout Page and Maintain Persistence by Injecting Malicious PHP Code

2022-04-27 ⋅ CISA ⋅ CISA, NSA, FBI, Australian Cyber Security Centre (ACSC), Canadian Centre for Cyber Security (CCCS), New Zealand National Cyber Security Centre (NZ NCSC), United Kingdom’s National Cyber Security Centre (NCSC-UK)
Alert (AA22-117A) 2021 Top Routinely Exploited Vulnerabilities

2022-04-20 ⋅ CISA ⋅ CISA, NSA, FBI, Australian Cyber Security Centre (ACSC), Canadian Centre for Cyber Security (CCCS), Government Communications Security Bureau, NCSC UK, National Crime Agency (NCA)
AA22-110A Joint CSA: Russian State-Sponsored and Criminal Cyber Threats to Critical Infrastructure
VPNFilter BlackEnergy DanaBot DoppelDridex Emotet EternalPetya GoldMax Industroyer Sality SmokeLoader TrickBot Triton Zloader

2022-04-19 ⋅ FBI ⋅ FBI
FBI Flash CU-000167-MW: BlackCat/ALPHV Ransomware Indicators of Compromise
BlackCat

2022-04-18 ⋅ CISA ⋅ CISA, U.S. Department of the Treasury, FBI
AA22-108A: TraderTraitor: North Korean State-Sponsored APT Targets Blockchain Companies (PDF)
FastCash Bankshot

2022-04-18 ⋅ CISA ⋅ CISA, FBI, U.S. Department of the Treasury
Alert (AA22-108A): TraderTraitor: North Korean State-Sponsored APT Targets Blockchain Companies
Bankshot