Malpedia Library

Click here to download all references as Bib-File.•

2024-12-15 ⋅ Malwarebytes ⋅ Jérôme Segura
Malicious ad distributes SocGholish malware to Kaiser Permanente employees
FAKEUPDATES

2024-06-24 ⋅ Malwarebytes Labs ⋅ Jérôme Segura
‘Poseidon’ Mac stealer distributed via Google ads
Poseidon Stealer

2024-01-10 ⋅ Malwarebytes ⋅ Jérôme Segura
Atomic Stealer rings in the new year with updated version
AMOS

2023-12-15 ⋅ Malwarebytes Labs ⋅ Jérôme Segura
PikaBot distributed via malicious search ads
Pikabot

2023-09-06 ⋅ Malwarebytes ⋅ Jérôme Segura
Mac users targeted in new malvertising campaign delivering Atomic Stealer
AMOS NetSupportManager RAT

2022-04-05 ⋅ Malwarebytes Labs ⋅ Ankur Saini, Hossein Jazi, Jérôme Segura
Colibri Loader combines Task Scheduler and PowerShell in clever persistence technique
Colibri Loader Mars Stealer

2021-11-03 ⋅ Malwarebytes ⋅ Jérôme Segura
Credit card skimmer evades Virtual Machines
magecart

2021-10-19 ⋅ Malwarebytes ⋅ Jérôme Segura
q-logger skimmer keeps Magecart attacks going
magecart

2021-09-13 ⋅ Malwarebytes ⋅ Jérôme Segura
The many tentacles of Magecart Group 8
magecart

2021-07-16 ⋅ Malwarebytes Labs ⋅ Jérôme Segura
Vidar and GandCrab: stealer and ransomware combo observed in the wild
Gandcrab Vidar

2021-06-28 ⋅ Malwarebytes ⋅ Jérôme Segura
Lil' skimmer, the Magecart impersonator - Malwarebytes Labs
magecart

2021-05-13 ⋅ Malwarebytes ⋅ Jérôme Segura
Newly observed PHP-based skimmer shows ongoing Magecart Group 12 activity
magecart

2021-02-02 ⋅ Malwarebytes ⋅ Jérôme Segura
Credit card skimmer piggybacks on Magento 1 hacking spree

2020-11-30 ⋅ Malwarebytes ⋅ hasherezade, Jérôme Segura
German users targeted with Gootkit banker or REvil ransomware
GootKit REvil

2020-10-28 ⋅ Malwarebytes ⋅ hasherezade, Hossein Jazi, Jérôme Segura, Marcelo Rivero
Fake COVID-19 survey hides ransomware in Canadian university attack
Vaggen

2020-10-12 ⋅ Malwarebytes Labs ⋅ Hossein Jazi, Jérôme Segura, Malwarebytes Threat Intelligence Team, Roberto Santos
Winnti APT group docks in Sri Lanka for new campaign
DBoxAgent SerialVlogger Winnti

2020-10-06 ⋅ Malwarebytes ⋅ Hossein Jazi, Jérôme Segura
Release the Kraken: Fileless APT attack abuses Windows Error Reporting service

2020-09-30 ⋅ Malwarebytes ⋅ Hossein Jazi, Jérôme Segura
Evasive Panda
MgBot BRONZE HIGHLAND Evasive Panda

2020-09-30 ⋅ Youtube (Virus Bulletin) ⋅ Hossein Jazi, Jérôme Segura
Evasive Panda
MgBot BRONZE HIGHLAND

2020-09-01 ⋅ Malwarebytes ⋅ Jérôme Segura
New web skimmer steals credit card data, sends to crooks via Telegram