| ID | Votes | Profile Description |
|---|---|---|
| Lucky | 1 | "Lucky" is a malicious software (malware) that has been compromising systems, causing significant disruptions and potential data loss. This malware infiltrates systems through suspicious downloads, emails, or websites, often unbeknownst to the user. Once inside a system, it can steal personal inform |
| FIN7 | 1 | FIN7, a notorious threat actor group known for its malicious activities, has recently been identified as targeting a large U.S. carmaker with phishing attacks. This group, which has previously operated behind fake cybersecurity companies such as Combi Security and Bastion Secure to recruit security |
| Carbanak | 1 | Carbanak is a sophisticated type of malware, short for malicious software, that is designed to exploit and damage computer systems. It can infiltrate systems through suspicious downloads, emails, or websites, often without the user's knowledge. Once inside, it can steal personal information, disrupt |
| Badbullzvenom | 1 | Badbullzvenom, a malware associated with the notorious Golden Chickens operation, has been traced back to its developers. In May 2023, security firm eSentire identified the second developer of the malware as a Romanian individual named Jack, also known by aliases Lucky and badbullzvenom. The Golden |
| Venom Spider | 1 | Venom Spider is a highly capable and stealthy malware suite, known for its destructive potential to exploit and damage computer systems. It infects systems through suspicious downloads, emails, or websites, often without the user's knowledge. Once inside, it has the ability to steal personal informa |
| ID | Type | Votes | Profile Description |
|---|---|---|---|
| EVILNUM | Unspecified | 2 | Evilnum is a form of malware, first observed and reported in 2018, that is designed to exploit and damage computer systems. It infiltrates systems through suspicious downloads, emails, or websites, often without the user's knowledge, and can steal personal information, disrupt operations, or even ho |
| More_eggs | Unspecified | 1 | More_eggs, also known as Golden Chickens, is a malware suite utilized by financially motivated cybercrime actors such as Cobalt Group and FIN6. This malware-as-a-service (MaaS) offering has been identified as the "cyber weapon of choice" by Russia-based cyber gangs. It was first seen in email campai |
| Jssloader | Unspecified | 1 | JssLoader is a malware often used by the ransomware gang FIN7, also known as Sangria Tempest, Elbrus, Carbon Spider, and others. This malicious software is typically delivered through deceptive tactics such as email lures, including invoice- and payment-themed decoy messages that trick users into do |
| Golden Chickens | Unspecified | 1 | Golden Chickens, also known as More_eggs, is a sophisticated malware suite that was initially discovered in 2018. It is used by financially motivated cybercrime actors like the Cobalt Group and FIN6 to steal sensitive information such as intellectual property and geopolitical intelligence from compr |
| Venomkit | Unspecified | 1 | VenomKit is a malicious software (malware) that was released by badbullzvenom, also known as LUCKY, in 2017. The tool was developed with the intent to exploit and damage computer systems, often infiltrating through suspicious downloads, emails, or websites without the user's knowledge. Once inside a |
| Ta4557 | Unspecified | 1 | TA4557 is a malicious software (malware) that has been uniquely identified by cybersecurity firm Proofpoint due to its distinctive use of tools, campaign targeting, evasion measures, and controlled infrastructure. This malware is particularly notable for its sophisticated spear-phishing strategy, wh |
| ID | Type | Votes | Profile Description |
|---|---|---|---|
| APT28 | Unspecified | 1 | APT28, also known as Fancy Bear, is a threat actor linked to Russia and has been involved in numerous cyber espionage campaigns. The group is notorious for its sophisticated tactics, techniques, and procedures (TTPs). Recently, NATO and the EU formally condemned APT28's activities, acknowledging the |
| FIN6 | Unspecified | 1 | FIN6, also known as ITG08, Skelaton Spider, and MageCart, is a notorious threat actor that has been implicated in various cybercrime activities. The group gained notoriety for stealing credit cards through point-of-sale (POS) systems in retail and hospitality establishments, most notably in the Home |
| ID | Type | Votes | Profile Description |
|---|---|---|---|
| CVE-2017-11882 | Unspecified | 1 | CVE-2017-11882 is a software vulnerability present in Microsoft's Equation Editor, allowing for the execution of malicious code. This vulnerability was exploited by a tool known as Royal Road, which is shared among various Chinese state-sponsored groups. The tool facilitates the creation of harmful |
| Golden Chickens More_eggs | Unspecified | 1 | None |
| Source | CreatedAt | Title |
|---|---|---|
| CERT-EU | 6 months ago | Cyber threat landscape controlled by leading threat operations |
| MITRE | 7 months ago | Cobalt Group Gaffe Reveals All Targets in Attack on Financial Institutions |
| MITRE | 7 months ago | First Activities of Cobalt Group in 2018: Spear-phishing Russian Banks |
| CERT-EU | 7 months ago | Hiring? New scam campaign means ‘resume’ downloads may contain malware |
| CERT-EU | 10 months ago | Microsoft Teams Hacks Are Back, As Storm-0324 Embraces TeamsPhisher |
| CERT-EU | a year ago | High-severity Chrome vulnerabilities addressed |
| CERT-EU | a year ago | Minnesota VA medical center plagued with IT security gaps |
| CERT-EU | a year ago | Golden Chickens malware developer unmasked |
| MITRE | a year ago | Cobalt Group 2.0 |
| MITRE | a year ago | Microsoft Word Intruder Integrates CVE-2017-0199, Utilized by Cobalt Group to Target Financial Institutions | Proofpoint US |
| Quick Heal Technologies Ltd. | a year ago | UAC Bypass Using CMSTP |
| CERT-EU | a year ago | Researchers Identify Second Developer of ‘Golden Chickens’ Malware |
| CERT-EU | a year ago | Meet 'Jack' from Romania! Mastermind Behind Golden Chickens Malware |
| CERT-EU | a year ago | Αποκαλύφθηκε ο προμηθευτής malware των πιο επικίνδυνων Ρώσων κυβερνο-εγκληματιών |
| CERT-EU | a year ago | Researchers identify second developer behind Golden Chickens MaaS |