ID | Type | Votes | Profile Description |
---|---|---|---|
ZxShell | Unspecified | 5 | ZXShell is a malicious software (malware) that has been used by various cyber threat actors to exploit and damage computer systems. It is known to be associated with other malware such as PANDORA, SOGU, GHOST, WIDEBERTH, QUICKPULSE, FLOWERPOT, QIAC, Gh0st, Poison Ivy, BEACON, HOMEUNIX, STEW, among o |
Merdoor | Unspecified | 5 | Merdoor is a powerful malware that has been in existence since 2018, according to Symantec. This backdoor is capable of installing itself as a service, keylogging, listening on local ports for commands, and communicating with its command and control (C&C) server using various methods such as HTTP, H |
ShadowPad | Unspecified | 2 | ShadowPad is a modular malware that has been utilized by various Chinese threat actors since at least 2017. It's a malicious software designed to infiltrate computer systems, often without the user's knowledge, and can cause significant damage by stealing personal information, disrupting operations, |
PlugX | Unspecified | 2 | PlugX is a notorious malware known for its harmful capabilities and stealthy operations. Often used by the Winnti group, it has been linked to various cyber-attacks, leveraging DLL side-loading to remain undetected. This technique allows it to infiltrate systems without raising alarms, making it an |
ID | Type | Votes | Profile Description |
---|---|---|---|
APT41 | Unspecified | 5 | APT41, a threat actor attributed to China, has been actively targeting organizations in at least 14 countries since 2012. The group is known for its use of an extensive range of malware, with at least 46 different code families and tools observed in their operations. They are associated with various |
Lancefly’s | Unspecified | 2 | None |
Preview | Source Link | CreatedAt | Title |
---|---|---|---|
CERT-EU | a year ago | China-Linked ‘Redfly’ Group Targeted Power Grid | |
InfoSecurity-magazine | a year ago | Anatsa Banking Trojan Targets Banks in US, UK and DACH Region | |
CERT-EU | a year ago | 安全事件周报 2023-05-15 第20周 - 360CERT | |
CERT-EU | a year ago | Шпионский код под Windows-системы госструктур и авиакомпаний оставался незамеченным пять лет | |
Flashpoint | 2 years ago | No title | |
CERT-EU | a year ago | Lancefly APT Custom Backdoor Targets Government and Aviation Sectors | |
CERT-EU | a year ago | Researchers Uncover Powerful Backdoor and Custom Implant in Year-Long Cyber Campaign - GIXtools | |
CERT-EU | a year ago | Lancefly APT targets government, aviation sector with custom backdoor | |
CERT-EU | a year ago | Year-long Cyber Campaign Reveals Potent Backdoor and Custom Implant, | IT Security News | |
CERT-EU | a year ago | Merdoor Backdoor Exploits Agencies By The Lancefly APT | IT Security News | |
Securityaffairs | a year ago | Lancefly uses powerful Merdoor backdoor in attacks on Asian orgs | |
CERT-EU | a year ago | Lancefly APT uses powerful Merdoor backdoor in attacks on Asian orgs | IT Security News | |
CSO Online | a year ago | New APT targets South and Southeast Asia with custom-written backdoor | |
CERT-EU | a year ago | Lancefly APT Targeting Asian Government Organizations for Years | |
BankInfoSecurity | a year ago | Threat Actor Uses Merdoor Backdoor to Hit Asian Orgs | |
CERT-EU | a year ago | Anomali Cyber Watch: Lancefly APT Adopts Alternatives to Phishing, BPFdoor Removed Hardcoded Indicators, FBI Ordered Russian Malware to Self-Destruct | |
CERT-EU | a year ago | Lancefly APT Hackers Using Custom Backdoor to Attack Government Orgs | IT Security News | |
CERT-EU | a year ago | Lancefly APT Hackers Using Custom Backdoor to Attack Government Orgs | |
CERT-EU | a year ago | Sophisticated Merdoor backdoor long used in Lancefly APT attacks | |
CERT-EU | a year ago | Cyber security week in review: May 19, 2023 |