Malpedia Library

Click here to download all references as Bib-File.•

2024-10-23 ⋅ Trend Micro ⋅ Bren Matthew Ebriega, Buddy Tancio, Mohamed Fahmy
Unmasking Prometei: A Deep Dive Into Our MXDR Findings
Prometei

2024-07-31 ⋅ Cleafy ⋅ Alessandro Strino, Simone Mattia
BingoMod: The new android RAT that steals money and wipes data
BingoMod

2024-06-20 ⋅ Cleafy ⋅ Federico Valentini, Simone Mattia
Medusa Reborn: A New Compact Variant Discovered
Medusa TangleBot

2024-06-05 ⋅ S-RM ⋅ David Broom, Gavin Hull
Exmatter malware levels up: S-RM observes new variant with simultaneous remote code execution and data targeting
BlackCat BlackMatter Conti ExMatter LockBit REvil Ryuk

2024-04-22 ⋅ Wired ⋅ Matt Burgess
North Koreans Secretly Animated Amazon and Max Shows, Researchers Say

2024-04-04 ⋅ Mandiant ⋅ Ashley Pearson, Austin Larsen, Billy Wong, John Wolfram, Joseph Pisano, Josh Murchie, Lukasz Lamparski, Matt Lin, Ron Craft, Ryan Hall, Shawn Chew, Tyler McLellan
Cutting Edge, Part 4: Ivanti Connect Secure VPN Post-Exploitation Lateral Movement Case Studies
TONERJAM

2024-04-03 ⋅ Wired ⋅ Andy Greenberg, Matt Burgess
The Mystery of ‘Jia Tan,’ the XZ Backdoor Mastermind
xzbot

2024-03-25 ⋅ iVerify ⋅ Matthias Frielingsdorf
Clipping Wings: Our Analysis of a Pegasus Spyware Sample
Chrysaor

2024-01-31 ⋅ Stairwell ⋅ Alex Hegyi, Chris St. Myers, Evelyne Diaz Araque, Matt Richard, Silas Cutler, Vincent Zell
Technical analysis: The silent torrent of VileRAT
VileRAT EVILNUM

2024-01-12 ⋅ Mandiant ⋅ Dimiter Andonov, Gabby Roncone, John Wolfram, Matt Lin, Robert Wallace, Tyler McLellan
Cutting Edge: Suspected APT Targets Ivanti Connect Secure VPN in New Zero-Day Exploitation
UTA0178

2024-01-10 ⋅ Volexity ⋅ Matthew Meltzer, Robert Jan Mora, Sean Koessel, Steven Adair, Thomas Lancaster
Active Exploitation of Two Zero-Day Vulnerabilities in Ivanti Connect Secure VPN
UTA0178

2023-12-20 ⋅ Sophos X-Ops ⋅ Mark Loman, Matt Wixey
CryptoGuard: An asymmetric approach to the ransomware battle
Akira LockBit Storm-1567

2023-12-04 ⋅ Cado Security ⋅ Matt Muir
P2Pinfect - New Variant Targets MIPS Devices
P2Pinfect

2023-11-21 ⋅ Checkpoint ⋅ Marc Salinas Fernandez
The Platform Matters: A Comparative Study on Linux and Windows Ransomware Attacks
Gwisin

2023-10-25 ⋅ ESET Research ⋅ Matthieu Faou
Winter Vivern exploits zero-day vulnerability in Roundcube Webmail servers
Unidentified JS 006 (Winter Wyvern) Winter Vivern

2023-10-18 ⋅ Cado Security ⋅ Matt Muir, Nate Bill
Qubitstrike - An Emerging Malware Campaign Targeting Jupyter Notebooks

2023-09-20 ⋅ Cado Security ⋅ Matt Muir
Cado Security Labs Researchers Witness a 600X Increase in P2Pinfect Traffic
P2Pinfect

2023-08-10 ⋅ ESET Research ⋅ Matthieu Faou
MoustachedBouncer AitM-powered surveillance via Belarus ISPs
NightClub

2023-08-10 ⋅ ESET Research ⋅ Matthieu Faou
MoustachedBouncer: Espionage against foreign diplomats in Belarus
NightClub MoustachedBouncer

2023-07-31 ⋅ Cado Security ⋅ Matt Muir, Nate Bill
Cado Security Labs Encounter Novel Malware, Redis P2Pinfect
P2Pinfect