Property:Author

From Botnets.fr

Jump to navigation Jump to search

This is a property of type Page. Author

Usage1030

previous 500 20 50 100 250 500 next 500

Filter<p>The <a target="_blank" rel="nofollow noreferrer noopener" class="external text" href="https://www.semantic-mediawiki.org/wiki/Help:Property_page/Filter">search filter</a> allows the inclusion of <a target="_blank" rel="nofollow noreferrer noopener" class="external text" href="https://www.semantic-mediawiki.org/wiki/Help:Query_expressions">query expressions</a> such as <code>~</code> or <code>!</code>. The selected <a target="_blank" rel="nofollow noreferrer noopener" class="external text" href="https://www.semantic-mediawiki.org/wiki/Query_engine">query engine</a> might also support case insensitive matching or other short expressions like:</p><ul><li><code>in:</code> result should include the term, e.g. '<code>in:Foo</code>'</li></ul><ul><li><code>not:</code> result should to not include the term, e.g. '<code>not:Bar</code>'</li></ul>

Showing 500 pages using this property.

"

"Crypto Ransomware" CTB-Locker (Critroni.A) on the rise +

"NetTraveler is Running!" - Red Star APT attacks compromise high-profile victims +

"njRAT" Uncovered +

'

'Tigger' trojan keeps security researchers hopping +

1

1940 IPs for a BHEK/ULocker server - Nexcess-Net +

A

A DDoS family affair: Dirt Jumper bot family continues to evolve +

A ScarePakage variant is targeting more countries : impersonating Europol and AFP +

A case study on Storm worm +

Thorsten Holtz +, Moritz Steiner +, Frederic Dahl +, …

A chat with NGR Bot +

Chong Rong Hwa +

A peek inside the Darkness (Optima) DDoS Bot +

Dancho Danchev +

A peek inside the PickPocket botnet +

Dancho Danchev +

A study of the Ilomo / Clampi botnet +

Alice Decker +, Max Goncharov +, Robert McArdle +, …

A study on botnet detection techniques +

Haritha.S. Nair +, Vinodh Ewards S E +

APT1: technical backstage +

Malware.lu +, Paul Rascagnères +

AbaddonPOS: A new point of sale threat linked to Vawtrak +

Acquisition and analysis of volatile memory from Android devices +

Joe Sylve +, Andrew Case +, Lodovico Marziale +, …

Actually, my name is Duqu - Stuxnet is my middle name +

Sergei Shevchenko +

Adobe Flash Player 0-day and HackingTeam's Remote Control System +

Sergey Golovanov +

Adrenalin botnet. The trend marks the Russian crimeware +

Advancing the fight against botnets with consumer notifications +

Kevin Sullivan +

Aldi Bot - bka.de DDoS +

Y0y0bkabkay0y0 +

Alina: casting a shadow on POS +

Josh Grunzweig +

Alina: following the shadow part 1 +

Josh Grunzweig +

Alina: following the shadow part 2 +

Josh Grunzweig +

All-in-one malware: an overview of Sality +

Nicolas Falliere +

An Analysis of the iKeeB (duh) iPhone botnet (Worm) +

Philip Porras +, Hassen Saidi +, Vinod Yegneswaran +

An advanced hybrid peer-to-peer botnet +

Ping Wang +, Sherri Sparks +, Cliff C. Zou +

An analysis of Dorkbot’s infection vectors (part 2) +

An analysis of the cross-platform backdoor NetWeirdRC +

An analysis of underground forums +

Marti Motoyama +, Damon McCoy +, Kirill Levchenko +, …

An encounter with trojan Nap +

Ali Islam +, Abhishek Singh +

An evaluation of current and future botnet defences +

An interesting case of JRE sandbox breach (CVE-2012-0507) +

Jeong Wook (Matt) Oh +, Chun Feng +

An internet census taken by an illegal botnet – A qualitative assessment of published measurements +

Thomas Krenc +, Oliver Hohlfeld +, Anja Feldmann +

An overnight sensation — CoreBot returns as a full-fledged financial malware +

Limor Kessem +, Martin Korman +

An overview of exploit packs +

An overview of messaging botnets +

François Paget +

Analyse de Xtreme RAT +

Analyse et poncage du botnet HerpesNet +

Analyse of the sample cdorked.A +

Analyse statique de Duqu stage 1 +

Paul Rascagnères +

Analyse statique de Duqu stage 2 +

Analysis of DarkMegi aka NpcDark +

Analysis of TDL4 +

Sergei Shevchenko +

Analysis of Ysreef (a variant of Tobfy) +

Analysis of a PlugX malware variant used for targeted attacks +

Analysis of a “/0” stealth scan from a botnet +

Alberto Dainotti +, Alistair King +, Kimberly Claffy +, …

Analysis of functions used to encode strings in Flame (GDB script) +

Analysis of ngrBot +

Analysis of the Finfisher lawful interception malware +

Claudio Guarnieri +

Analysis of the malware of Red October - Part 1 +

RootBSD +, Malware.lu +

Analysis of the malware of Red October - Part 2 +

RootBSD +, Malware.lu +

Analysis: Malware Win32/Rimecud.B +

Bharat Jogi +, Qualys Security Labs +

Analyzing a new exploit pack +

Anaru malware now live and ready to steal +

And real name of Magnitude is.... +

Android RATs branch out with Dendroid +

Android malware pairs man-in-the-middle with remote-controlled banking trojan +

Carlos Castillo +

Android trojan used to create simple SMS spam botnet +

Andrew Conway +

Android.Bmaster: A million-dollar mobile botnet +

Cathal Mullaney +

Android.Counterclank found in official Android market +

Andromeda 2.7 features +

Suweera De Souza +

Angler Exploit Kit – Operating at the Cutting Edge +

Another family of DDoS bots: Avzhan +

Anunak:APT against financial institutions +

Group-IB +, Fox-IT +

Análisis del comportamiento de VOlk y sus funcionalidades +

Fernando Catoira +

Apache binary backdoors on Cpanel-based servers +

Apple took 3 years to fix Finfisher trojan hole +

Apple zombie malware 'NetWeird' rummages for browser and email passwords +

Armenian Bredolab creator jailed for computer sabotage +

Christopher Brook +

Attack on Zygote: a new twist in the evolution of mobile threats +

Nikita Buchka +, Mikhail Kuzin +

Attackers place Command and Control servers inside enterprise walls +

Attention! All data on your hardrive is encrypted +

Tomas Prochazka +, Michal Cebak +

AutoIT ransomware +

Avalanche phishers migrate to ZeuS +

Linda McGlasson +

Avatar rootkit: the continuing saga +

Aleksandr Matrosov +, Eugene Rodionov +, Anton Cherepanov +

B

Back to Stuxnet: the missing link +

Backdoor uses Evernote as command and control server +

Nikko Tamaña +

Banking trojan Dridex uses macros for infection +

Rhena Inocencio +

BareBox: efﬁcient malware analysis on bare-metal +

Christopher Kruegel +, Giovanni Vigna +, Dhilung Kirat +

Battling the Rustock threat +

Marc Lauricella +, Holly Stewart +, T.J. Campana +, …

Battling the Zbot threat +

Joe Faulhaber +, Paul Henry +, Frank Simorjay +, …

Behind the Captcha or Inside Blackhole Exploit Kit 2.0 - Exploit Kit Administration Panel +

Bitcrypt broken +

Fabien Perigaud +, Cédric Pernet +

Black Dragon: "... and all will burn beneath the shadow of my wings" +

BlackEnergy competitor – The 'Darkness' DDoS bot +

Mila Parkour +, André M. DiMino +

Blackhole & Cridex: season 2 episode 1: Intuit spam & SSL traffic analysis +

André M. DiMino +

Blackhole Ramnit - samples and analysis +

Blackhole and Cool Exploit kits nearly extinct +

Dennis Fisher +

Blackhole exploit kit v2 on the rise +

Pradeep Kulkarni +

Blackhole, CVE-2012-0507 and Carberp +

David Harley +, Aleksandr Matrosov +

Bleeding Life Exploit Pack +

Bot Roast II nets 8 individuals +

FBI +

Bot of the day: Ramnit/Ninmul +

Matthew Jonkman +

Bot shopping with my wife +

BotGrep: finding P2P bots with structured graph analysis +

Shishir Nagaraja +, Prateek Mittal +, Chi-yao Hong +, …

BoteAR: a “social botnet”- What are we talking about +

Botnet command server hidden in Tor +

TS +

Botnet construction, control and concealment +

Botnet shutdown success story - again: disabling the new Hlux/Kelihos botnet +

Stefan Ortloff +

Botnet shutdown success story: how Kaspersky Lab disabled the Hlux/Kelihos botnet +

Tillmann Werner +

Botnet: classification, attacks, detection, tracing, and preventive measures +

Jing Liu +, Yang Xiao +, Hongmei Deng +, …

Botnets on discount! +

Boxer SMS trojan: malware as a global service +

Bredolab botmaster ‘Birdie’ still at large +

Bredolab severely injured but not dead +

Buh-bye Beebone! Law enforcement kills polymorphic virus-spreading botnet +

John Zorabedian +

C

CTB-Locker is back: the web server edition +

CVE-2012-4681 - On its way to Sakura Exploit Kit too +

CVE-2012-4681 - Redkit Exploit Kit - I want Porche Turbo +

CVE-2012-4681 - Связка Sweet Orange +

CVE-2012-5076 - Massively adopted - Blackhole update to 2.0.1 +

CVE-2013-1493 (jre17u15 - jre16u41) integrating exploit kits +

CVE-2013-2465/CVE-2013-2471/CVE-2013-2463 integrating Exploit Kits -- jre7u21 CVE- jre6u45 and earlier +

CVE-2013-5330 (Flash) in an unknown Exploit Kit fed by high rank websites +

CVE-2015-0311 (Flash up to 16.0.0.287) integrating Exploit Kits +

Carbanak/Anunak in the BlueCoat malware analysis appliance +

Snorre Fagerland +

Carbanak: Multi-million dollar cybercrime gang focuses on banks rather than their customers +

Symantec Security Response +

Carberp + BlackHole = growing fraud incidents +

David Harley +, Aleksandr Matrosov +, Eugene Rodionov +, …

Carberp - a modular information stealing trojan +

Andrea Allievi +, Marco Giuliani +

Carberp gang evolution: CARO 2012 presentation +

Aleksandr Matrosov +

Carberp reverse engineering +

Giuseppe Bonfa +

Carberp steals e-cash vouchers from Facebook users +

Carberp, the renaissance ? +

Carberp-based trojan attacking SAP +

Geoff McDonald +

Carberp-in-the-Mobile +

Denis Maslennikov +

Carberp: Silent trojan, eventual successor to ZeuS +

Carlos Zevallos +

Carberp: it’s not over yet +

Vyacheslav Zakorzhevsky +

Case study of the Miner botnet +

Daniel Plohmann +, Elmar Gerhards-Padilla +

Cerber Dominates Ransomware Landscape After Locky's Demise +

Catalin Cimpanu +

Chameleon botnet grabbed $6m A MONTH from online ad-slingers +

Chasing cybercrime: network insights of Dyre and Dridex trojan bankers +

Cimbot - A technical analysis +

Citadel : le fichier de configuration +

Fabien Perigaud +

Citadel V1.3.5.1: enter the fort’s dungeons +

Citadel ZeuS bot +

Citadel trojan malware analysis +

Jason Milletary +

Citadel trojan touts trouble-ticket system +

Citadel: a cyber-criminal’s ultimate weapon? +

Jérôme Segura +

Clampi/Ligats/Ilomo trojan +

Conficker working group: lessons learned +

CWG +

Confidential documents from Japanese politics stolen by malware +

Pierluigi Paganini +

Cool EK : "Hello my friend..." CVE-2012-5076 +

Cool Exploit Kit - A new Browser Exploit Pack on the Battlefield with a "Duqu" like font drop +

Coordinated DDoS attack during Russian Duma elections +

Hal Roberts +, Bruce Etling +

Coreflood botnet - Detection and remediation +

André M. DiMino +

Covert channels over social networks +

Cracking down on botnets +

Cracking into the new P2P variant of Zeusbot/Spyeye +

Cracking the encrypted C&C protocol of the ZeroAccess botnet +

Crisis for Windows sneaks onto virtual machines +

Takashi Katsuki +

Critroni crypto ransomware seen using Tor for command and control +

Dennis Fisher +

Cross-platform Frutas RAT builder and back door +

Joseph Bingham +

CryptXXX: new ransomware from the actors behind Reveton, dropping via Angler +

Crypto breakthrough shows Flame was designed by world-class scientists +

Crypto experts called on to crack cyberspy tool's encryption +

Kelly Jackson Higgins +

CryptoDefense and How Decrypt ransomware information guide and FAQ +

Lawrence Abrams +

Cutwail drives spike in malicious HTML attachment spam +

Rodel Mendrez +

Cyber gang seeks botmasters to wage massive wave of trojan attacks against U.S. banks +

D

DDoS attacks: the Zemra bot +

DDoS watch: keeping an eye on Aldi Bot +

DGAs and cyber-criminals: a case study +

Manos Antonakakis +, Jeremy Demar +, Christopher Elisan +, …

DISCLOSURE: detecting botnet command and control servers through large-scale NetFlow analysis +

Christopher Kruegel +, Leyla Bilge +, Davide Balzarotti +, …

DNS: a botnet dialect +

Francisco J. Gómez Rodríguez +, Carlos Díaz Hidalgo +

DaRK DDoSseR leads to Gh0st RAT +

Nart Villeneuve +

DarkMegi rootkit - sample (distributed via Blackhole) +

Darkmegi: this is not the Rootkit you’re looking for +

Craig Schmugar +

Darkness DDoS bot version identification guide +

Mila Parkour +, André M. DiMino +

De code van Dorifel nader bekeken +

Brenno de Winter +

Demystifying Pobelka +

Michael Sandee +

Department of Labor strategic web compromise +

Detection and classification of different botnet C&C channels +

Gregory Fedynyshyn +, Mooi Choo Chuah +, Gang Tan +

Dharma Ransomware Uses AV Tool to Distract from Malicious Activities +

Raphael Centeno +

Digging inside Tinba malware - A walkthrough +

Aditya K Sood +

Digging into the Nitol DDoS botnet +

Dirt Jumper DDoS bot increasingly popular +

Discerning relationships: the Mexican botnet connection +

Ranieri Romera +

Disorderly conduct: localized malware impersonates the police +

Disttrack malware overwrites files, infects MBR +

Cris Pantanilla +

Disttrack sabotage malware wipes data at unnamed Middle East energy organization +

Fahmida Y. Rashid +

Domain generation algorithms (DGA) in stealthy malware +

Gunter Ollmann +

Dorifel is much bigger than expected and it’s still active and growing! +

Dorifel virus gereed voor Nederlandse banking phishing +

Dorifel/Quervar: the support scammer’s secret weapon +

Dorkbot: conquistando Latinoamérica +

Dridex learns new trick: P2P over HTTP +

S21sec Ecrime +

DroidLive New SMS Android Trojan +

Dutch users served Sinowal for lunch +

Roland Dela Paz +

Dyre Banking Trojan +

Brett Stone-Gross +, Pallav Khandhar +

E

ESET analyzes first Android file-encrypting, TOR-enabled ransomware +

Robert Lipovsky +

EURO Winlocker +

Egypt Finfisher intrusion tools and ethics +

Mikko Hypponen +

Emerging attack vectors - RSA slide deck +

Encyclopedia entry: Win32/Carberp +

Encyclopedia entry: Win32/Conficker +

Joshua Phillips +, Jireh Sanico +, Vincent Tiu +, …

Encyclopedia entry: Win32/Oderoor +

Matt McCormack +

Equation: the Death Star of malware galaxy +

Esthost taken down - Biggest cybercriminal takedown in history +

Feike Hacquebord +

Evolution of Win32Carberp: going deeper +

David Harley +, Aleksandr Matrosov +, Eugene Rodionov +, …

Exploring the market for stolen passwords +

F

F-Secure has discovered MiniDuke malware samples in the wild +

Pierluigi Paganini +

FAQ on Kelihos.B/Hlux.B sinkholing +

David Dittrich +

FBI ransomware now targeting Apple’s Mac OS X users +

Jérôme Segura +

FBI shuts down Coreflood botnet, zombies transmitting financial data +

Fahmida Y. Rashid +

Fake FBI Ransomware analysis +

Fast look at Sundown EK +

Fast look at an infection by a Blackhole Exploit Kit 2.0 +

Feodo - a new botnet on the rise +

Festi botnet analysis & investigation +

Aleksandr Matrosov +, Eugene Rodionov +

FighterPOS: a new one-man PoS malware campaign +

Trend Micro Forward-Looking Threat Research Team +

File infector Expiro hits US, steals FTP credentials +

Rhena Inocencio +

First step in cross-platform Trojan bankers from Brazil done +

Dmitry Bestuzhev +

First widespread virus cross-infection +

Jeet Morparia +

Five charged in largest hacking scheme ever prosecuted in US +

Flame, Duqu and Stuxnet: in-depth code analysis of mssecmgr.ocx +

Aleksandr Matrosov +, Eugene Rodionov +

Flame: replication via Windows Update MITM proxy +

Flamer analysis: framework reconstruction +

Aleksandr Matrosov +, Eugene Rodionov +

Flashfake Mac OS X botnet confirmed +

Igor Soumenkov +

From Sakura to Reveton via Smoke Bot - or a botnet distribution of Reveton +

Full analysis of Flame's Command & Control servers +

Full analysis of Flame's command & control servers +

G

Gamarue dropping Lethic bot +

Amandeep Kumar +, Nirmal Singh +

GandCrab ransomware distributed by RIG and GrandSoft exploit kits +

Jérôme Segura +, Vasilios Hioueras +

Gangstaservice Winlock Affiliate +

Gauss: Nation-state cyber-surveillance meets banking Trojan +

Gauss: abnormal distribution +

Get gamed and rue the day... +

Methusela Cebrian Ferrer +

Getting more "personal" & deeper into Cridex with parfeit credential stealer infection +

Hendrik Adrian +

Gimemo finally targeting USA with Camera Feature too +

Gimemo wants to play in the big league +

GingerMaster Android Malware Utilizing A Root Exploit +

Going solo: self-propagating ZBOT malware spotted +

Abigail Pichel +, Joie Salvio +, Alvin Bacani +

Google Groups trojan +

Gavin O’Gorman +

Got malware? Rent an exploit service +

Kevin Stevens +

Gumblar Google-poisoning attack morphs +

Guys behind Gauss and Flame are the same +

H

HARMUR: storing and analyzing historic data on malicious domains +

Marco Cova +, Corrado Leita +

HTran and the Advanced Persistent Threat +

Hackers are increasingly targeting IoT Devices with Mirai DDoS Malware +

Harnig botnet: a retreating army +

Harnig is back +

Harvesting data on the Xarvester botmaster +

Have we seen the end of the ZeroAccess botnet? +

Hello Neutrino ! (just one more Exploit Kit) +

Herpes botnet +

HerpesNet botnet 1.7 +

Lycroft Eugenia +

Hesperbot – A new, advanced banking trojan in the wild +

Robert Lipovsky +, Anton Cherepanov +

Hiding in plain sight: the FAKEM remote access trojan +

Nart Villeneuve +

Hiloti: the (bot)master of disguise +

Hodprot: hot to bot +

Aleksandr Matrosov +, Eugene Rodionov +, Dmitry Volkov +

How Lockergoga took down Hydro — ransomware used in targeted attacks aimed at big business +

Kevin Beaumont +

How to steal a Botnet and what can happen when you do +

Richard Kemmerer +

Hébergeurs malhonnêtes : nouvelle fermeture (3FN) +

Eric Freyssinet +

I

IRC bot for Android +

Denis Maslennikov +

IcoScript: using webmail to control malware +

Paul Rascagnères +

Industrial espionage and targeted attacks: understanding the characteristics of an escalating threat +

Olivier Thonnard +, Gavin O’Gorman +, Leyla Bilge +, …

Infamous Skynet botnet author allegedly arrested +

Inside Andromeda Bot v2.06 Webpanel / AKA Gamarue - Botnet Control Panel +

Inside Blackhole Exploits Kit v1.2.4 - Exploit Kit Control Panel +

Inside Carberp botnet +

Francisco Ruiz +

Inside Citadel 1.3.4.5 C&C & Builder - Botnet Control Panel +

Inside Impact exploit kit +

Inside Pony 1.7 / Fareit C&C - Botnet Control Panel +

Inside Smoke Bot - Botnet Control Panel +

Inside Smoke Bot - botnet control panel +

Inside Styx exploit kit control panel +

Inside Ulocker +

Inside Upas Kit (1.0.1.1) aka Rombrast C&C - Botnet Control Panel +

Inside the Grum botnet +

Inside the world of the Citadel trojan +

Ryan Sherstobitoff +

Inside view of Lyposit aka (for its friends) Lucky LOCKER +

Insights from the analysis of the Mariposa botnet +

Amine Boukhtouta +, Prosenjit Sinha +, Mourad Debbabi +, …

Interconnection of Gauss with Stuxnet, Duqu & Flame +

Eugene Rodionov +

International cyber ring that infected millions of computers dismantled +

Internet Census 2012, port scanning /0 using insecure embedded devices +

Introducing Ponmocup-Finder +

It’s 2012 and Armageddon has arrived +

It’s not the end of the world: DarkComet misses by a mile +

J

Java Runtime Environment 1.7 Zero-Day Exploit Delivers Backdoor +

Manuel Gatbunton +

Java Zero-Days and the Blackhole Exploit Kit +

K

Karagny.L unpack +

Kaspersky Lab et Seculert annoncent la récente découverte de « Madi », une nouvelle attaque de cyberespionnage au Moyen‑Orient +

Kaspersky Lab +

Kaspersky security bulletin 2015. Overall statistics for 2015 +

Maria Garnaeva +, Jornt van der Wiel +, Denis Makrushin +, …

Kelihos botnet appears again with new variant +

Kelihos botnet trying to expand by harnessing Russian national sentiments +

Ran Mosessco +, Nick Griffin +, Brandon Laux +

Kelihos is dead. Long live Kelihos +

Gunter Ollmann +

Kelihos is dead… No wait… Long live Kelihos! Again! +

Kelihos/Hlux botnet returns with new techniques +

Maria Garnaeva +

Kelihos: not alien resurrection, more attack of the clones +

King of spam:Festi botnet analysis +

Aleksandr Matrosov +, Eugene Rodionov +

Know your enemy: tracking botnets +

Thorsten Holz +, Paul Bächer +, Markus Kötter +, …

Koobface botnet master KrotReal back in business, distributes ransomware and promotes BHSEO service/product +

Dancho Danchev +

Koobface, un écosystème cybercriminel ou le conte des Mille et une nuits ? +

Eric Freyssinet +

Kore exploit kit +

Kraken botnet infiltration +

L

Large-scale analysis of malware downloaders +

Christian Rossow +, Christian Dietrich +, Herbert Bosz +

Latest Kelihos botnet shut down live at RSA Conference 2013 +

Michael Mimoso +

Latest SpyEye botnet active and cheaper +

Latin American banks under fire from the Mexican VOlk-botnet +

Le dropper de CTB-Locker +

Christophe Rieunier +

Learning stateful models for network honeypots +

Konrad Rieck +, Tammo Krueger +, Hugo Gascon +, …

Legal implications of countering botnets +

Liis Vihul +, Christian Czosseck +, Katharina Ziolkowski +, …

Leouncia - Yet another backdoor +

Leouncia - Yet another backdoor - Part 2 +

Library file in certain Android apps connects to C&C servers +

Lifting the lid on the Redkit exploit kit (Part 1) +

Fraser Howard +

Lights Out: Dragonfly is on the move +

Linux/Cdorked.A: New Apache backdoor being used in the wild to serve Blackhole +

Pierre-Marc Bureau +

Locky Ransomware switches to the Lukitus extension for Encrypted Files +

Lawrence Abrams +

LogPOS - new point of sale malware using mailslots +

Long life to Kelihos! +

Gianluca Giuliani +

Look what I found: it's a Pony! +

M

MDK: the largest mobile botnet in China +

MMD-0056-2016 - Linux/Mirai, how an old ELF malcode is recycled +

MP-DDoser: A rapidly improving DDoS threat +

MP-DDoser:Monitoring a rapidly improving DDoS threat +

MSIE 0-day exploit CVE-2014-0322 - Possibly targeting French aerospace association +

Alex Watson +, Victor Chin +

MSRT April 2012: Win32/Claretore +

MSRT April 2014 – Ramdo +

MSRT March 2012: breaking bad +

MSRT November '12 - Weelsof around the world +

Patrick Estavillo +

MSRT September '12 - Medfos, hijacking your daily search +

MSRT march: three hioles in one +

Maazben: best of both worlds +

Rodel Mendrez +

Mac BackDoor.Wirenet.1 config extractor +

RootBSD +, Malware.lu +

Mac Flashback exploiting unpatched Java vulnerability +

Mac spyware found at Oslo Freedom Forum +

Sean Sullivan +

Madi is back - New Tricks and a new Command&Control server +

Nicolas Brulez +

Mahdi malware finds 150 new targets including U.S. and Germany, gets more evasive +

Major shift in strategy for ZeroAccess rootkit malware, as it shifts to user-mode +

Malicious Apache module injects Iframes +

Denis Sinegubko +

Malicious Apache module used for content injection: Linux/Chapro.A +

Pierre-Marc Bureau +

Malware 2 - from infection to persistence +

Mark Nicholls +

Malware Memory Analysis - Volatility +

Basement Tech +

Malware Uses Google Go Language +

Malware analysis Rannoh/Matsnu +

Paul Rascagnères +, Hugo Caron +

Malware analysis of the Lurk downloader +

Brett Stone-Gross +

Malware analysis tutorial 32: exploration of botnet client +

Malware attacking POS systems +

Adam Blaszczyk +

Malware discovered developed with Google's "Go" programming language +

Malware evolving to defeat anti-DDoS services like CloudFlare? +

Alexis Dorais-Joncas +

Malware for everyone - Aldi Bot at a discount price +

Chris von Eitzen +

Malware hunting with the Sysinternals tools +

Mark Russinovich +

Malware pandemics +

Philip Porras +, Hassen Saidi +, Vinod Yegneswaran +

Malware targeting Windows 8 uses Google Docs +

Takashi Katsuki +

Massive search fraud botnet seized by Microsoft and Symantec +

Sean Gallagher +

Mastermind behind Gozi bank malware charged along with two others +

Measuring and detecting Fast-Flux service networks +

Thorsten Holz +, Christian Gorecki +, Konrad Rieck +, …

Measuring and detecting malware downloads in live network traffic +

Manos Antonakakis +, Babak Rahbarinia +, Roberto Perdisci +, …

Measuring botnet populations +

Meet "Red Dot exploit toolkit" +

Meet CritXPack (Previously Vintage Pack) +

Meet ProPack Exploit Pack - yes that's a lot of pack +

Meet ‘Flame’, the massive spy malware infiltrating Iranian computers +

Mexican Twitter-controlled botnet unpicked +

Microsoft and Symantec take down Bamital botnet that hijacks online searches +

Richard Boscovich +

Microsoft and financial services industry leaders target cybercriminal operations from ZeuS botnets +

Richard Domingues Boscovich +

Microsoft disrupts the emerging Nitol botnet being spread through an unsecure supply chain +

Richard Domingues Boscovich +

Microsoft neutralizes Kelihos botnet, names defendant in case +

Richard Domingues Boscovich +

Microsoft partners with Interpol, industry to disrupt global malware attack affecting more than 770,000 PCs in past six months +

Rex Plantado +, Tommy Blizard +, Rodel Finones +, …

Microsoft security updates January 2016 +

Kurt Baumgartner +

MoVP 1.3 Desktops, heaps, and ransomware +

Michael Hale Ligh +

Mocbot spam analysis +

Monkif botnet hides commands in JPEGs +

More Flame/Skywiper CNC behavior uncovered +

More details of the Dorifel servers +

Rickey Gevers +

Morto worm sets a (DNS) record +

Cathal Mullaney +

Mpack installs ultra-invisible trojan +

Multitenancy Botnets thwart threat analysis +

Mysterious Avatar rootkit with API, SDK, and Yahoo Groups for C&C communication +

Aleksandr Matrosov +

N

NGRBot spreads via chat +

Niranjan Jayanand +

Necurs Quick Analysis +

Neosploit gets Java 0-Day +

Nepalese government websites compromised to serve Zegost RAT +

Gianluca Giuliani +, Elad Sharf +

NetTraveler APT gets a makeover for 10th birthday +

Kurt Baumgartner +, Costin Raiu +

NetTraveler is back: the 'Red Star' APT returns with new tricks +

New Apple Mac trojan called OSX/Crisis discovered +

New Chinese exploit pack +

New CryptoLocker spreads via removable drives +

Abigail Pichel +

New GamaPoS malware piggybacks on Andromeda botnet; spreads in 13 US states +

New IE Zero-Day used in targeted attacks +

Vikram Thakur +

New IceIX (ZeuS variant) changes its encryption method (again) +

Andreas Baumhof +

New Mac malware discovered on attendee computer at anti-surveillance workshop +

Brian Donohue +

New Mahdi updates, new C2 server +

New POS malware emerges - Punkey +

New RATs emerge from leaked Njw0rm source code +

Michael Marcos +

New Xtreme RAT attacks US, Israel, and other foreign governments +

Nart Villeneuve +

New crimeware attacks LatAm bank users +

New crypto-ransomware JIGSAW plays nasty games +

Jasen Sumalapao +

New crypto-ransomware emerge in the wild +

Eduardo Altares II +

New point-of-sale malware distributed by Andromeda botnet +

Lucian Constantin +

New ransomware plays its victims an audio file, over and over and over… +

Elizabeth Bookman +

New trojan found: Admin.HLP leaks organizations data +

Eyal Benishti +

NewPosThings has new PoS things +

Newly detected Crisis virus infects Windows, Macs and virtual machines +

Newly launched ‘HTTP-based botnet setup as a service’ empowers novice cybercriminals with bulletproof hosting capabilities +

Dancho Danchev +

Ngrbot steals information and mine Bitcoins +

SonicWALL UTM research team +

NitlovePOS: another new POS malware +

Nart Villeneuve +, Daniel Regalado +

Nitol DDoS botnet discovered in China +

Not just a one-trick PonyDOS +

Nuevo botnet contra Mexico: Karn!v0r3x +

Jose Dos Santos Torrijos +

Nymaim - obfuscation chronicles +

Jean-Ian Boutin +

O

OSX Kitmos analysis +

Steeve Barbeau +

OSX.Iservice technical details +

OSX.iService its not going to iWork for you +

OSX/Crisis has been used as part of a targeted attack +

OSX/Flashback - The first malware to infect hundreds of thousands of Apple Mac +

Pierre-Marc Bureau +

Obama order sped up wave of cyberattacks against Iran +

David E. Sanger +

Olmasco bootkit: next circle of TDL4 evolution (or not) +

Aleksandr Matrosov +

On botnets that use DNS for command and control +

Felix C. Freiling +, Christian J. Dietrich +, Christian Rossow +, …

On the analysis of the ZeuS botnet crimeware toolkit +

Hamad Binsalleeh +, Thomas Ormerod +, Amine Boukhtouta +, …

One Sinowal trojan + one gang = hundreds of thousands of compromised accountS +

RSA FraudAction Research Lab +

Operation Bot Roast II +

FBI +

Operation SnowMan: DeputyDog actor compromises US veterans of foreign wars website +

Ned Moran +, Darien Kindlund +, Dan Caselden +, …

Operation Socialist The Inside Story Of How British Spies Hacked Belgium’s Largest Telco +

Ryan Gallagher +

Over 9 million PCs infected - ZeroAccess botnet uncovered +

Overcoming reputation and proof-of-work systems in botnets +

Andrew White +, Alan Tickle +, Andrew Clark +

Overview: inside the ZeuS trojan’s source code +

Owning Kraken zombies +

P

P2P botnet Kelihos.B with 100.000 nodes sinkholed +

Tillmann Werner +

PETYA crypto-ransomware overwrites MBR to lock users out of their computers +

Jasen Sumalapao +

Panda Security uncovers bot-killing malware +

Panel Gendarmerie +

Malekal Morte +

Panel Supern0va et virus gendarmerie +

Malekal Morte +

Panel Virus Gendarmerie : Ratio 0.36% +

Malekal Morte +

Part virus, part botnet, spreading fast: Ramnit moves past Facebook passwords +

Sean Gallagher +

Peer-to-peer botnets: overview and case study +

Julian B. Grizzard +, Vikram Sharma +, Chris Nunnery +, …

PeerRush: mining for unwanted P2P traffic +

Babak Rahbarinia +, Roberto Perdisci +, Andrea Lanzi +, …

Petya ransomware skips the files and encrypts your hard drive instead +

Lawrence Abrams +

Playing cops & robbers with banks & browsers +

Fred Gutierrez +

PlugX malware: A good hacker is an apologetic hacker +

Dmitry Tarakanov +

PlugX: new tool for a not so new campaign +

Roland Dela Paz +

PlugX: some uncovered points +

Fabien Perigaud +

PoS RAM scraper malware; past, present and future +

Poison Ivy 2.3.0 Documentation +

Poison Ivy: assessing damage and extracting intelligence +

PoisonIvy adapts to communicate through authentication proxies +

Shusei Tomonaga +

Poisoned search results: How hackers have automated search engine poisoning attacks to distribute malware +

Fraser Howard +, Onur Komili +

PokerAgent botnet stealing over 16,000 Facebook credentials +

Robert Lipovsky +

Police Trojan crosses the Atlantic, now targets USA and Canada +

Ponmocup analysis +

Post-mortem of a zombie: Conficker cleanup after six years +

Hadi Asghari +, Michael Ciere +, Michel J.G. van Eeten +

Pramro and Sality - two PEs in a pod +

Scott Molenkamp +

Proactive detection of network security incidents +

Katarzyna Gorzelak +, Tomasz Grudziecki +, Paweł Jacewicz +, …

Proactive detection of security incidents II - Honeypots +

Probing the Gozi-Prinimalka campaign +

Ivan Macalintal +

Pushdo botnet gets DGA update, over 6,000 machines host new variant +

Danielle Walker +

Q

Qadars: un nouveau malware bancaire avec un composant mobile +

Daniel Lunghi +

Quervar – Induc.C reincarnate +

Robert Lipovsky +

QuickPost: Flame & Volatility +

Michael Hale Ligh +

R

REVETON Ransomware Spreads with Old Tactics, New Infection Method +

Alvin Bacani +, David Sancho +, Jamz Yaneza +

REvil ransomware gang's web sites mysteriously shut down +

Lawrence Abrams +

RIG exploit kit strikes oil +

Andrew Tsonchev +, Levi Gundert +, Emmanuel Tacheau +, …

Ransom.II - UGC payment for USA - Windows Genuine impersonation for DE +

Ransomware : Smile you're on camera - Reveton.C new landing pages +

Ransomware : la sulfureuse hypothèse sur la situation chez Norsk Hydro +

Catalin Cimpanu +

Ransomware Casier - Sharing Design with Lyposit - Gaelic & Persian ( +

Ransomware Fake Microsoft Security Essentials +

Malekal Morte +

Ransomware and Silence Locker control panel +

Ransomware crimeware kits +

Ransomware or Wiper? LockerGoga Straddles the Line +

Ransomware report: the rise of BandarChor +

Ransomware « Trojan.Casier » Panel +

Malekal morte +

Ransomware ‘Holds Up’ victims +

Sravan Ganachari +

Ransomware: playing on your fears +

Raymond Roberts +

Redkit - one account = one color +

Redkit : No more money ! Traffic US, CA, GB, AU +

Relentless Zbot and anti-emulations +

Research Win32/Slenfbot +

Hamish O'Dea +, David Wood +

Researchers: Bredolab still lurking, though severely injured +

Reversing Andromeda-Gamarue botnet +

Reversing malware loaders - The Matsnu-A Case +

Kyriakos Economou +

Reversing the wrath of Khan +

Reveton += HU, LV, SK, SI, TR (!), RO - So spreading accross Europe with 6 new Design +

Reveton Autumn Collection += AU,CZ, IE, NO & 17 new design +

Reveton can speak now ! +

Richard Clarke on who was behind the Stuxnet attack +

Ron Rosenbaum +

RootSmart Android malware +

RootSmart malware utilizes GingerBreak root exploit +

Rovnix Reloaded: new step of evolution +

David Harley +, Aleksandr Matrosov +, Eugene Rodionov +

Rovnix bootkit framework updated +

Aleksandr Matrosov +

Rovnix.D: the code injection story +

Aleksandr Matrosov +

Russian service online to check the detection of malware +

Réflexions pour un plan d'action contre les botnets +

Eric Freyssinet +

S

SDBot IRC botnet continues to make waves +

Loucif Kharouni +

SGNET: a worldwide deployable framework to support the analysis of malware threat models +

Corrado Leita +, Marc Dacier +

SIM-ple: mobile handsets are weak link in latest online banking fraud scheme +

Joe Faulhaber +, David Felstead +, Paul Henry +, …

SIRv12: the obstinacy of Conficker +

Joe Blackbird +

SKyWIper: A complex malware for targeted attacks +

SKyWIper Analysis Team +, Budapest University of Technology and Economics +

SPL exploit kit – now with CVE-2013-0422 +

SamSam Ransomware Evolves Its Tactics Towards Targeting Whole Companies +

SamSam ransomware designed to inundate targeted networks with thousands of copies of itself +

Bradley Barth +

Saudi Aramco hit by computer virus +

Charles Arthur +

Say hello to Tinba: world’s smallest trojan-banker +

Secrets of the Comfoo masters +

Joe Stewart +, Don Jackson +

Security Response Android.Counterclank +

Nino Gutierrez +, Asuka Yamamoto +

Security alert: SpamSoldier +

Derek Halliday +

Security alert: new TGLoader Android malware utilizes the exploid root exploit +

Retrieved from "https://www.botnets.fr/index.php?title=Property:Author&oldid=49"