Property:Author
From Botnets.fr
Jump to navigation
Jump to search
This is a property of type
Page
.
Author
Usage
1030
previous 500
20
50
100
250
500
next 500
Filter
<p>The <a target="_blank" rel="nofollow noreferrer noopener" class="external text" href="https://www.semantic-mediawiki.org/wiki/Help:Property_page/Filter">search filter</a> allows the inclusion of <a target="_blank" rel="nofollow noreferrer noopener" class="external text" href="https://www.semantic-mediawiki.org/wiki/Help:Query_expressions">query expressions</a> such as <code>~</code> or <code>!</code>. The selected <a target="_blank" rel="nofollow noreferrer noopener" class="external text" href="https://www.semantic-mediawiki.org/wiki/Query_engine">query engine</a> might also support case insensitive matching or other short expressions like:</p><ul><li><code>in:</code> result should include the term, e.g. '<code>in:Foo</code>'</li></ul><ul><li><code>not:</code> result should to not include the term, e.g. '<code>not:Bar</code>'</li></ul>
Showing 500 pages using this property.
"
"Crypto Ransomware" CTB-Locker (Critroni.A) on the rise
+
Kafeine
+
"NetTraveler is Running!" - Red Star APT attacks compromise high-profile victims
+
GReAT
+
"njRAT" Uncovered
+
Fidelis
+
'
'Tigger' trojan keeps security researchers hopping
+
Tim Wilson
+
1
1940 IPs for a BHEK/ULocker server - Nexcess-Net
+
Kafeine
+
A
A DDoS family affair: Dirt Jumper bot family continues to evolve
+
Curt Wilson
+
A ScarePakage variant is targeting more countries : impersonating Europol and AFP
+
Kafeine
+
A case study on Storm worm
+
Thorsten Holtz
+
,
Moritz Steiner
+
,
Frederic Dahl
+
,
…
A chat with NGR Bot
+
Chong Rong Hwa
+
A peek inside the Darkness (Optima) DDoS Bot
+
Dancho Danchev
+
A peek inside the PickPocket botnet
+
Dancho Danchev
+
A study of the Ilomo / Clampi botnet
+
Alice Decker
+
,
Max Goncharov
+
,
Robert McArdle
+
,
…
A study on botnet detection techniques
+
Haritha.S. Nair
+
,
Vinodh Ewards S E
+
APT1: technical backstage
+
Malware.lu
+
,
Paul Rascagnères
+
AbaddonPOS: A new point of sale threat linked to Vawtrak
+
Darien Huss
+
Acquisition and analysis of volatile memory from Android devices
+
Joe Sylve
+
,
Andrew Case
+
,
Lodovico Marziale
+
,
…
Actually, my name is Duqu - Stuxnet is my middle name
+
Sergei Shevchenko
+
Adobe Flash Player 0-day and HackingTeam's Remote Control System
+
Sergey Golovanov
+
Adrenalin botnet. The trend marks the Russian crimeware
+
Jorge Mieres
+
Advancing the fight against botnets with consumer notifications
+
Kevin Sullivan
+
Aldi Bot - bka.de DDoS
+
Y0y0bkabkay0y0
+
Alina: casting a shadow on POS
+
Josh Grunzweig
+
Alina: following the shadow part 1
+
Josh Grunzweig
+
Alina: following the shadow part 2
+
Josh Grunzweig
+
All-in-one malware: an overview of Sality
+
Nicolas Falliere
+
An Analysis of the iKeeB (duh) iPhone botnet (Worm)
+
Philip Porras
+
,
Hassen Saidi
+
,
Vinod Yegneswaran
+
An advanced hybrid peer-to-peer botnet
+
Ping Wang
+
,
Sherri Sparks
+
,
Cliff C. Zou
+
An analysis of Dorkbot’s infection vectors (part 2)
+
Horea Coroiu
+
An analysis of the cross-platform backdoor NetWeirdRC
+
Lysa Myers
+
An analysis of underground forums
+
Marti Motoyama
+
,
Damon McCoy
+
,
Kirill Levchenko
+
,
…
An encounter with trojan Nap
+
Ali Islam
+
,
Abhishek Singh
+
An evaluation of current and future botnet defences
+
Andrew White
+
An interesting case of JRE sandbox breach (CVE-2012-0507)
+
Jeong Wook (Matt) Oh
+
,
Chun Feng
+
An internet census taken by an illegal botnet – A qualitative assessment of published measurements
+
Thomas Krenc
+
,
Oliver Hohlfeld
+
,
Anja Feldmann
+
An overnight sensation — CoreBot returns as a full-fledged financial malware
+
Limor Kessem
+
,
Martin Korman
+
An overview of exploit packs
+
Mila Parkour
+
An overview of messaging botnets
+
François Paget
+
Analyse de Xtreme RAT
+
RootBSD
+
Analyse et poncage du botnet HerpesNet
+
RootBSD
+
Analyse of the sample cdorked.A
+
Jvoisin
+
Analyse statique de Duqu stage 1
+
Paul Rascagnères
+
Analyse statique de Duqu stage 2
+
RootBSD
+
Analysis of DarkMegi aka NpcDark
+
Kimberly
+
Analysis of TDL4
+
Sergei Shevchenko
+
Analysis of Ysreef (a variant of Tobfy)
+
Hugo Caron
+
Analysis of a PlugX malware variant used for targeted attacks
+
CIRCL
+
Analysis of a “/0” stealth scan from a botnet
+
Alberto Dainotti
+
,
Alistair King
+
,
Kimberly Claffy
+
,
…
Analysis of functions used to encode strings in Flame (GDB script)
+
RootBSD
+
Analysis of ngrBot
+
Kimberly
+
Analysis of the Finfisher lawful interception malware
+
Claudio Guarnieri
+
Analysis of the malware of Red October - Part 1
+
RootBSD
+
,
Malware.lu
+
Analysis of the malware of Red October - Part 2
+
RootBSD
+
,
Malware.lu
+
Analysis: Malware Win32/Rimecud.B
+
Bharat Jogi
+
,
Qualys Security Labs
+
Analyzing a new exploit pack
+
Darryl
+
Anaru malware now live and ready to steal
+
Joji Hamada
+
And real name of Magnitude is....
+
Kafeine
+
Android RATs branch out with Dendroid
+
Peter Coogan
+
Android malware pairs man-in-the-middle with remote-controlled banking trojan
+
Carlos Castillo
+
Android trojan used to create simple SMS spam botnet
+
Andrew Conway
+
Android.Bmaster: A million-dollar mobile botnet
+
Cathal Mullaney
+
Android.Counterclank found in official Android market
+
Irfan Asrar
+
Andromeda 2.7 features
+
Suweera De Souza
+
Angler Exploit Kit – Operating at the Cutting Edge
+
Abel Toro
+
Another family of DDoS bots: Avzhan
+
Jeff Edwards
+
Anunak:APT against financial institutions
+
Group-IB
+
,
Fox-IT
+
Análisis del comportamiento de VOlk y sus funcionalidades
+
Fernando Catoira
+
Apache binary backdoors on Cpanel-based servers
+
Daniel Cid
+
Apple took 3 years to fix Finfisher trojan hole
+
Brian Krebs
+
Apple zombie malware 'NetWeird' rummages for browser and email passwords
+
Paul Ducklin
+
Armenian Bredolab creator jailed for computer sabotage
+
Christopher Brook
+
Attack on Zygote: a new twist in the evolution of mobile threats
+
Nikita Buchka
+
,
Mikhail Kuzin
+
Attackers place Command and Control servers inside enterprise walls
+
Brian Prince
+
Attention! All data on your hardrive is encrypted
+
Tomas Prochazka
+
,
Michal Cebak
+
AutoIT ransomware
+
Hugo Caron
+
Avalanche phishers migrate to ZeuS
+
Linda McGlasson
+
Avatar rootkit: the continuing saga
+
Aleksandr Matrosov
+
,
Eugene Rodionov
+
,
Anton Cherepanov
+
B
Back to Stuxnet: the missing link
+
Aleks
+
Backdoor uses Evernote as command and control server
+
Nikko Tamaña
+
Banking trojan Dridex uses macros for infection
+
Rhena Inocencio
+
BareBox: efficient malware analysis on bare-metal
+
Christopher Kruegel
+
,
Giovanni Vigna
+
,
Dhilung Kirat
+
Battling the Rustock threat
+
Marc Lauricella
+
,
Holly Stewart
+
,
T.J. Campana
+
,
…
Battling the Zbot threat
+
Joe Faulhaber
+
,
Paul Henry
+
,
Frank Simorjay
+
,
…
Behind the Captcha or Inside Blackhole Exploit Kit 2.0 - Exploit Kit Administration Panel
+
Kafeine
+
Bitcrypt broken
+
Fabien Perigaud
+
,
Cédric Pernet
+
Black Dragon: "... and all will burn beneath the shadow of my wings"
+
Malwageddon
+
BlackEnergy competitor – The 'Darkness' DDoS bot
+
Mila Parkour
+
,
André M. DiMino
+
Blackhole & Cridex: season 2 episode 1: Intuit spam & SSL traffic analysis
+
André M. DiMino
+
Blackhole Ramnit - samples and analysis
+
Mila Parkour
+
Blackhole and Cool Exploit kits nearly extinct
+
Dennis Fisher
+
Blackhole exploit kit v2 on the rise
+
Pradeep Kulkarni
+
Blackhole, CVE-2012-0507 and Carberp
+
David Harley
+
,
Aleksandr Matrosov
+
Bleeding Life Exploit Pack
+
Darryl
+
Bot Roast II nets 8 individuals
+
FBI
+
Bot of the day: Ramnit/Ninmul
+
Matthew Jonkman
+
Bot shopping with my wife
+
Luis Corrons
+
BotGrep: finding P2P bots with structured graph analysis
+
Shishir Nagaraja
+
,
Prateek Mittal
+
,
Chi-yao Hong
+
,
…
BoteAR: a “social botnet”- What are we talking about
+
Jorge Mieres
+
Botnet command server hidden in Tor
+
TS
+
Botnet construction, control and concealment
+
Krogoth
+
Botnet shutdown success story - again: disabling the new Hlux/Kelihos botnet
+
Stefan Ortloff
+
Botnet shutdown success story: how Kaspersky Lab disabled the Hlux/Kelihos botnet
+
Tillmann Werner
+
Botnet: classification, attacks, detection, tracing, and preventive measures
+
Jing Liu
+
,
Yang Xiao
+
,
Hongmei Deng
+
,
…
Botnets on discount!
+
Inconnu
+
Boxer SMS trojan: malware as a global service
+
Pablo Ramos
+
Bredolab botmaster ‘Birdie’ still at large
+
Brian Krebs
+
Bredolab severely injured but not dead
+
Atif Mushtaq
+
Buh-bye Beebone! Law enforcement kills polymorphic virus-spreading botnet
+
John Zorabedian
+
C
CTB-Locker is back: the web server edition
+
Ido Naor
+
CVE-2012-4681 - On its way to Sakura Exploit Kit too
+
Kafeine
+
CVE-2012-4681 - Redkit Exploit Kit - I want Porche Turbo
+
Kafeine
+
CVE-2012-4681 - Связка Sweet Orange
+
Kafeine
+
CVE-2012-5076 - Massively adopted - Blackhole update to 2.0.1
+
Kafeine
+
CVE-2013-1493 (jre17u15 - jre16u41) integrating exploit kits
+
Kafeine
+
CVE-2013-2465/CVE-2013-2471/CVE-2013-2463 integrating Exploit Kits -- jre7u21 CVE- jre6u45 and earlier
+
Kafeine
+
CVE-2013-5330 (Flash) in an unknown Exploit Kit fed by high rank websites
+
Kafeine
+
CVE-2015-0311 (Flash up to 16.0.0.287) integrating Exploit Kits
+
Kafeine
+
Carbanak/Anunak in the BlueCoat malware analysis appliance
+
Snorre Fagerland
+
Carbanak: Multi-million dollar cybercrime gang focuses on banks rather than their customers
+
Symantec Security Response
+
Carberp + BlackHole = growing fraud incidents
+
David Harley
+
,
Aleksandr Matrosov
+
,
Eugene Rodionov
+
,
…
Carberp - a modular information stealing trojan
+
Andrea Allievi
+
,
Marco Giuliani
+
Carberp gang evolution: CARO 2012 presentation
+
Aleksandr Matrosov
+
Carberp reverse engineering
+
Giuseppe Bonfa
+
Carberp steals e-cash vouchers from Facebook users
+
Amit Klein
+
Carberp, the renaissance ?
+
Kafeine
+
Carberp-based trojan attacking SAP
+
Geoff McDonald
+
Carberp-in-the-Mobile
+
Denis Maslennikov
+
Carberp: Silent trojan, eventual successor to ZeuS
+
Carlos Zevallos
+
Carberp: it’s not over yet
+
Vyacheslav Zakorzhevsky
+
Case study of the Miner botnet
+
Daniel Plohmann
+
,
Elmar Gerhards-Padilla
+
Cerber Dominates Ransomware Landscape After Locky's Demise
+
Catalin Cimpanu
+
Chameleon botnet grabbed $6m A MONTH from online ad-slingers
+
John Leyden
+
Chasing cybercrime: network insights of Dyre and Dridex trojan bankers
+
Blueliv
+
Cimbot - A technical analysis
+
Julia Wolf
+
Citadel : le fichier de configuration
+
Fabien Perigaud
+
Citadel V1.3.5.1: enter the fort’s dungeons
+
Limor Kessem
+
Citadel ZeuS bot
+
Sherb1n
+
Citadel trojan malware analysis
+
Jason Milletary
+
Citadel trojan touts trouble-ticket system
+
Brian Krebs
+
Citadel: a cyber-criminal’s ultimate weapon?
+
Jérôme Segura
+
Clampi/Ligats/Ilomo trojan
+
Joe Stewart
+
Conficker working group: lessons learned
+
CWG
+
Confidential documents from Japanese politics stolen by malware
+
Pierluigi Paganini
+
Cool EK : "Hello my friend..." CVE-2012-5076
+
Kafeine
+
Cool Exploit Kit - A new Browser Exploit Pack on the Battlefield with a "Duqu" like font drop
+
Kafeine
+
Coordinated DDoS attack during Russian Duma elections
+
Hal Roberts
+
,
Bruce Etling
+
Coreflood botnet - Detection and remediation
+
André M. DiMino
+
Covert channels over social networks
+
Jose Selvi
+
Cracking down on botnets
+
Tim Cranton
+
Cracking into the new P2P variant of Zeusbot/Spyeye
+
Andrea Lelli
+
Cracking the encrypted C&C protocol of the ZeroAccess botnet
+
John Morris
+
Crisis for Windows sneaks onto virtual machines
+
Takashi Katsuki
+
Critroni crypto ransomware seen using Tor for command and control
+
Dennis Fisher
+
Cross-platform Frutas RAT builder and back door
+
Joseph Bingham
+
CryptXXX: new ransomware from the actors behind Reveton, dropping via Angler
+
Kafeine
+
Crypto breakthrough shows Flame was designed by world-class scientists
+
Dan Goodin
+
Crypto experts called on to crack cyberspy tool's encryption
+
Kelly Jackson Higgins
+
CryptoDefense and How Decrypt ransomware information guide and FAQ
+
Lawrence Abrams
+
Cutwail drives spike in malicious HTML attachment spam
+
Rodel Mendrez
+
Cyber gang seeks botmasters to wage massive wave of trojan attacks against U.S. banks
+
Mor Ahuvia
+
D
DDoS attacks: the Zemra bot
+
Alan Neville
+
DDoS watch: keeping an eye on Aldi Bot
+
Curt Wilson
+
DGAs and cyber-criminals: a case study
+
Manos Antonakakis
+
,
Jeremy Demar
+
,
Christopher Elisan
+
,
…
DISCLOSURE: detecting botnet command and control servers through large-scale NetFlow analysis
+
Christopher Kruegel
+
,
Leyla Bilge
+
,
Davide Balzarotti
+
,
…
DNS: a botnet dialect
+
Francisco J. Gómez Rodríguez
+
,
Carlos Díaz Hidalgo
+
DaRK DDoSseR leads to Gh0st RAT
+
Nart Villeneuve
+
DarkMegi rootkit - sample (distributed via Blackhole)
+
Mila Parkour
+
Darkmegi: this is not the Rootkit you’re looking for
+
Craig Schmugar
+
Darkness DDoS bot version identification guide
+
Mila Parkour
+
,
André M. DiMino
+
De code van Dorifel nader bekeken
+
Brenno de Winter
+
Demystifying Pobelka
+
Michael Sandee
+
Department of Labor strategic web compromise
+
Matt Dahl
+
Detection and classification of different botnet C&C channels
+
Gregory Fedynyshyn
+
,
Mooi Choo Chuah
+
,
Gang Tan
+
Dharma Ransomware Uses AV Tool to Distract from Malicious Activities
+
Raphael Centeno
+
Digging inside Tinba malware - A walkthrough
+
Aditya K Sood
+
Digging into the Nitol DDoS botnet
+
Itai Liba
+
Dirt Jumper DDoS bot increasingly popular
+
Jose Nazario
+
Discerning relationships: the Mexican botnet connection
+
Ranieri Romera
+
Disorderly conduct: localized malware impersonates the police
+
Horea Coroiu
+
Disttrack malware overwrites files, infects MBR
+
Cris Pantanilla
+
Disttrack sabotage malware wipes data at unnamed Middle East energy organization
+
Fahmida Y. Rashid
+
Domain generation algorithms (DGA) in stealthy malware
+
Gunter Ollmann
+
Dorifel is much bigger than expected and it’s still active and growing!
+
David Jacoby
+
Dorifel virus gereed voor Nederlandse banking phishing
+
Huub Roem
+
Dorifel/Quervar: the support scammer’s secret weapon
+
David Harley
+
Dorkbot: conquistando Latinoamérica
+
Pablo Ramos
+
Dridex learns new trick: P2P over HTTP
+
S21sec Ecrime
+
DroidLive New SMS Android Trojan
+
Xuxian Jiang
+
Duqu FAQ
+
Ryan Naraine
+
Dutch users served Sinowal for lunch
+
Roland Dela Paz
+
Dyre Banking Trojan
+
Brett Stone-Gross
+
,
Pallav Khandhar
+
E
ESET analyzes first Android file-encrypting, TOR-enabled ransomware
+
Robert Lipovsky
+
EURO Winlocker
+
Xylitol
+
Egypt Finfisher intrusion tools and ethics
+
Mikko Hypponen
+
Emerging attack vectors - RSA slide deck
+
Ed Skoudis
+
Encyclopedia entry: Win32/Carberp
+
Shawn Wang
+
Encyclopedia entry: Win32/Conficker
+
Joshua Phillips
+
,
Jireh Sanico
+
,
Vincent Tiu
+
,
…
Encyclopedia entry: Win32/Oderoor
+
Matt McCormack
+
Equation: the Death Star of malware galaxy
+
GReAT
+
Esthost taken down - Biggest cybercriminal takedown in history
+
Feike Hacquebord
+
Evolution of Win32Carberp: going deeper
+
David Harley
+
,
Aleksandr Matrosov
+
,
Eugene Rodionov
+
,
…
Exploring the market for stolen passwords
+
Brian Krebs
+
F
F-Secure has discovered MiniDuke malware samples in the wild
+
Pierluigi Paganini
+
FAQ on Kelihos.B/Hlux.B sinkholing
+
David Dittrich
+
FBI ransomware now targeting Apple’s Mac OS X users
+
Jérôme Segura
+
FBI shuts down Coreflood botnet, zombies transmitting financial data
+
Fahmida Y. Rashid
+
Fake FBI Ransomware analysis
+
Hynek Blinka
+
Fast look at Sundown EK
+
Kafeine
+
Fast look at an infection by a Blackhole Exploit Kit 2.0
+
Kafeine
+
Feodo - a new botnet on the rise
+
Atif Mushtaq
+
Festi botnet analysis & investigation
+
Aleksandr Matrosov
+
,
Eugene Rodionov
+
FighterPOS: a new one-man PoS malware campaign
+
Trend Micro Forward-Looking Threat Research Team
+
File infector Expiro hits US, steals FTP credentials
+
Rhena Inocencio
+
First step in cross-platform Trojan bankers from Brazil done
+
Dmitry Bestuzhev
+
First widespread virus cross-infection
+
Jeet Morparia
+
Five charged in largest hacking scheme ever prosecuted in US
+
Ryan Naraine
+
Flame, Duqu and Stuxnet: in-depth code analysis of mssecmgr.ocx
+
Aleksandr Matrosov
+
,
Eugene Rodionov
+
Flame: replication via Windows Update MITM proxy
+
Aleks
+
Flamer analysis: framework reconstruction
+
Aleksandr Matrosov
+
,
Eugene Rodionov
+
Flashfake Mac OS X botnet confirmed
+
Igor Soumenkov
+
From Sakura to Reveton via Smoke Bot - or a botnet distribution of Reveton
+
Kafeine
+
Full analysis of Flame's Command & Control servers
+
GReAT
+
Full analysis of Flame's command & control servers
+
GReAT
+
G
Gamarue dropping Lethic bot
+
Amandeep Kumar
+
,
Nirmal Singh
+
GandCrab ransomware distributed by RIG and GrandSoft exploit kits
+
Jérôme Segura
+
,
Vasilios Hioueras
+
Gangstaservice Winlock Affiliate
+
Xylitol
+
Gauss: Nation-state cyber-surveillance meets banking Trojan
+
GReAT
+
Gauss: abnormal distribution
+
GReAT
+
Get gamed and rue the day...
+
Methusela Cebrian Ferrer
+
Getting more "personal" & deeper into Cridex with parfeit credential stealer infection
+
Hendrik Adrian
+
Gimemo finally targeting USA with Camera Feature too
+
Kafeine
+
Gimemo wants to play in the big league
+
Kafeine
+
GingerMaster Android Malware Utilizing A Root Exploit
+
Xuxian Jiang
+
Going solo: self-propagating ZBOT malware spotted
+
Abigail Pichel
+
,
Joie Salvio
+
,
Alvin Bacani
+
Google Groups trojan
+
Gavin O’Gorman
+
Got malware? Rent an exploit service
+
Kevin Stevens
+
Gumblar Google-poisoning attack morphs
+
John Leyden
+
Guys behind Gauss and Flame are the same
+
Ali Islam
+
H
HARMUR: storing and analyzing historic data on malicious domains
+
Marco Cova
+
,
Corrado Leita
+
HTran and the Advanced Persistent Threat
+
Joe Stewart
+
Hackers are increasingly targeting IoT Devices with Mirai DDoS Malware
+
Waqas Amir
+
Harnig botnet: a retreating army
+
Atif Mushtaq
+
Harnig is back
+
Atif Mushtaq
+
Harvesting data on the Xarvester botmaster
+
Brian Krebs
+
Have we seen the end of the ZeroAccess botnet?
+
James Wyke
+
Hello Neutrino ! (just one more Exploit Kit)
+
Kafeine
+
Herpes botnet
+
Xylitol
+
HerpesNet botnet 1.7
+
Lycroft Eugenia
+
Hesperbot – A new, advanced banking trojan in the wild
+
Robert Lipovsky
+
,
Anton Cherepanov
+
Hiding in plain sight: the FAKEM remote access trojan
+
Nart Villeneuve
+
Hiloti: the (bot)master of disguise
+
Patrick Yu
+
Hodprot: hot to bot
+
Aleksandr Matrosov
+
,
Eugene Rodionov
+
,
Dmitry Volkov
+
How Lockergoga took down Hydro — ransomware used in targeted attacks aimed at big business
+
Kevin Beaumont
+
How to steal a Botnet and what can happen when you do
+
Richard Kemmerer
+
Hébergeurs malhonnêtes : nouvelle fermeture (3FN)
+
Eric Freyssinet
+
I
IRC bot for Android
+
Denis Maslennikov
+
IcoScript: using webmail to control malware
+
Paul Rascagnères
+
Industrial espionage and targeted attacks: understanding the characteristics of an escalating threat
+
Olivier Thonnard
+
,
Gavin O’Gorman
+
,
Leyla Bilge
+
,
…
Infamous Skynet botnet author allegedly arrested
+
MalwareTech
+
Inside Andromeda Bot v2.06 Webpanel / AKA Gamarue - Botnet Control Panel
+
Kafeine
+
Inside Blackhole Exploits Kit v1.2.4 - Exploit Kit Control Panel
+
Kafeine
+
Inside Carberp botnet
+
Francisco Ruiz
+
Inside Citadel 1.3.4.5 C&C & Builder - Botnet Control Panel
+
Kafeine
+
Inside Impact exploit kit
+
Kafeine
+
Inside Pony 1.7 / Fareit C&C - Botnet Control Panel
+
Kafeine
+
Inside Smoke Bot - Botnet Control Panel
+
Kafeine
+
Inside Smoke Bot - botnet control panel
+
Kafeine
+
Inside Styx exploit kit control panel
+
Kafeine
+
Inside Ulocker
+
Xylitol
+
Inside Upas Kit (1.0.1.1) aka Rombrast C&C - Botnet Control Panel
+
Kafeine
+
Inside the Grum botnet
+
Brian Krebs
+
Inside the world of the Citadel trojan
+
Ryan Sherstobitoff
+
Inside view of Lyposit aka (for its friends) Lucky LOCKER
+
Kafeine
+
Insights from the analysis of the Mariposa botnet
+
Amine Boukhtouta
+
,
Prosenjit Sinha
+
,
Mourad Debbabi
+
,
…
Interconnection of Gauss with Stuxnet, Duqu & Flame
+
Eugene Rodionov
+
International cyber ring that infected millions of computers dismantled
+
Press Office
+
Internet Census 2012, port scanning /0 using insecure embedded devices
+
Carna Botnet
+
Introducing Ponmocup-Finder
+
Tom U
+
It’s 2012 and Armageddon has arrived
+
Jeff Edwards
+
It’s not the end of the world: DarkComet misses by a mile
+
Jeff Edwards
+
J
Java Runtime Environment 1.7 Zero-Day Exploit Delivers Backdoor
+
Manuel Gatbunton
+
Java Zero-Days and the Blackhole Exploit Kit
+
Jon Oliver
+
K
Karagny.L unpack
+
RootBSD
+
Kaspersky Lab et Seculert annoncent la récente découverte de « Madi », une nouvelle attaque de cyberespionnage au Moyen‑Orient
+
Kaspersky Lab
+
Kaspersky security bulletin 2015. Overall statistics for 2015
+
Maria Garnaeva
+
,
Jornt van der Wiel
+
,
Denis Makrushin
+
,
…
Kelihos botnet appears again with new variant
+
Jay Pfoutz
+
Kelihos botnet trying to expand by harnessing Russian national sentiments
+
Ran Mosessco
+
,
Nick Griffin
+
,
Brandon Laux
+
Kelihos is dead. Long live Kelihos
+
Gunter Ollmann
+
Kelihos is dead… No wait… Long live Kelihos! Again!
+
Phil Hay
+
Kelihos/Hlux botnet returns with new techniques
+
Maria Garnaeva
+
Kelihos: not alien resurrection, more attack of the clones
+
David Harley
+
King of spam:Festi botnet analysis
+
Aleksandr Matrosov
+
,
Eugene Rodionov
+
Know your enemy: tracking botnets
+
Thorsten Holz
+
,
Paul Bächer
+
,
Markus Kötter
+
,
…
Koobface botnet master KrotReal back in business, distributes ransomware and promotes BHSEO service/product
+
Dancho Danchev
+
Koobface, un écosystème cybercriminel ou le conte des Mille et une nuits ?
+
Eric Freyssinet
+
Kore exploit kit
+
Darryl
+
Kraken botnet infiltration
+
Pedram Amini
+
L
Large-scale analysis of malware downloaders
+
Christian Rossow
+
,
Christian Dietrich
+
,
Herbert Bosz
+
Latest Kelihos botnet shut down live at RSA Conference 2013
+
Michael Mimoso
+
Latest SpyEye botnet active and cheaper
+
Umesh Wanve
+
Latin American banks under fire from the Mexican VOlk-botnet
+
Jorge Mieres
+
Le dropper de CTB-Locker
+
Christophe Rieunier
+
Learning stateful models for network honeypots
+
Konrad Rieck
+
,
Tammo Krueger
+
,
Hugo Gascon
+
,
…
Legal implications of countering botnets
+
Liis Vihul
+
,
Christian Czosseck
+
,
Katharina Ziolkowski
+
,
…
Leouncia - Yet another backdoor
+
Atif Mushtaq
+
Leouncia - Yet another backdoor - Part 2
+
Atif Mushtaq
+
Library file in certain Android apps connects to C&C servers
+
Weichao Sun
+
Lifting the lid on the Redkit exploit kit (Part 1)
+
Fraser Howard
+
Lights Out: Dragonfly is on the move
+
Sariel Moshe
+
Linux/Cdorked.A: New Apache backdoor being used in the wild to serve Blackhole
+
Pierre-Marc Bureau
+
Locky Ransomware switches to the Lukitus extension for Encrypted Files
+
Lawrence Abrams
+
LogPOS - new point of sale malware using mailslots
+
Nick Hoffman
+
Long life to Kelihos!
+
Gianluca Giuliani
+
Look what I found: it's a Pony!
+
Anat Davidi
+
M
MDK: the largest mobile botnet in China
+
Flora Liu
+
MMD-0056-2016 - Linux/Mirai, how an old ELF malcode is recycled
+
Unixfreaxjp
+
MP-DDoser: A rapidly improving DDoS threat
+
Jeff Edwards
+
MP-DDoser:Monitoring a rapidly improving DDoS threat
+
Jeff Edwards
+
MSIE 0-day exploit CVE-2014-0322 - Possibly targeting French aerospace association
+
Alex Watson
+
,
Victor Chin
+
MSRT April 2012: Win32/Claretore
+
Tim Liu
+
MSRT April 2014 – Ramdo
+
Shawn Wang
+
MSRT March 2012: breaking bad
+
Rex Plantado
+
MSRT November '12 - Weelsof around the world
+
Patrick Estavillo
+
MSRT September '12 - Medfos, hijacking your daily search
+
Shawn Wang
+
MSRT march: three hioles in one
+
Shawn Wang
+
Maazben: best of both worlds
+
Rodel Mendrez
+
Mac BackDoor.Wirenet.1 config extractor
+
RootBSD
+
,
Malware.lu
+
Mac Flashback exploiting unpatched Java vulnerability
+
Brod
+
Mac spyware found at Oslo Freedom Forum
+
Sean Sullivan
+
Madi is back - New Tricks and a new Command&Control server
+
Nicolas Brulez
+
Mahdi malware finds 150 new targets including U.S. and Germany, gets more evasive
+
Mike Lennon
+
Major shift in strategy for ZeroAccess rootkit malware, as it shifts to user-mode
+
James Wyke
+
Malicious Apache module injects Iframes
+
Denis Sinegubko
+
Malicious Apache module used for content injection: Linux/Chapro.A
+
Pierre-Marc Bureau
+
Malware 2 - from infection to persistence
+
Mark Nicholls
+
Malware Memory Analysis - Volatility
+
Basement Tech
+
Malware Uses Google Go Language
+
Flora Liu
+
Malware analysis Rannoh/Matsnu
+
Paul Rascagnères
+
,
Hugo Caron
+
Malware analysis of the Lurk downloader
+
Brett Stone-Gross
+
Malware analysis tutorial 32: exploration of botnet client
+
Dr. Xiang Fu
+
Malware attacking POS systems
+
Adam Blaszczyk
+
Malware discovered developed with Google's "Go" programming language
+
Steve Ragan
+
Malware evolving to defeat anti-DDoS services like CloudFlare?
+
Alexis Dorais-Joncas
+
Malware for everyone - Aldi Bot at a discount price
+
Chris von Eitzen
+
Malware hunting with the Sysinternals tools
+
Mark Russinovich
+
Malware pandemics
+
Philip Porras
+
,
Hassen Saidi
+
,
Vinod Yegneswaran
+
Malware targeting Windows 8 uses Google Docs
+
Takashi Katsuki
+
Massive search fraud botnet seized by Microsoft and Symantec
+
Sean Gallagher
+
Mastermind behind Gozi bank malware charged along with two others
+
Kim Zetter
+
Measuring and detecting Fast-Flux service networks
+
Thorsten Holz
+
,
Christian Gorecki
+
,
Konrad Rieck
+
,
…
Measuring and detecting malware downloads in live network traffic
+
Manos Antonakakis
+
,
Babak Rahbarinia
+
,
Roberto Perdisci
+
,
…
Measuring botnet populations
+
Jose Nazario
+
Meet "Red Dot exploit toolkit"
+
Kafeine
+
Meet CritXPack (Previously Vintage Pack)
+
Kafeine
+
Meet ProPack Exploit Pack - yes that's a lot of pack
+
Kafeine
+
Meet ‘Flame’, the massive spy malware infiltrating Iranian computers
+
Kim Zetter
+
Mexican Twitter-controlled botnet unpicked
+
John Leyden
+
Microsoft and Symantec take down Bamital botnet that hijacks online searches
+
Richard Boscovich
+
Microsoft and financial services industry leaders target cybercriminal operations from ZeuS botnets
+
Richard Domingues Boscovich
+
Microsoft disrupts the emerging Nitol botnet being spread through an unsecure supply chain
+
Richard Domingues Boscovich
+
Microsoft neutralizes Kelihos botnet, names defendant in case
+
Richard Domingues Boscovich
+
Microsoft partners with Interpol, industry to disrupt global malware attack affecting more than 770,000 PCs in past six months
+
Rex Plantado
+
,
Tommy Blizard
+
,
Rodel Finones
+
,
…
Microsoft security updates January 2016
+
Kurt Baumgartner
+
MoVP 1.3 Desktops, heaps, and ransomware
+
Michael Hale Ligh
+
Mocbot spam analysis
+
Joe Stewart
+
Monkif botnet hides commands in JPEGs
+
Vikas Taneja
+
More Flame/Skywiper CNC behavior uncovered
+
Ali Islam
+
More details of the Dorifel servers
+
Rickey Gevers
+
Morto worm sets a (DNS) record
+
Cathal Mullaney
+
Mpack installs ultra-invisible trojan
+
Gregg Keizer
+
Multitenancy Botnets thwart threat analysis
+
Martin
+
Mysterious Avatar rootkit with API, SDK, and Yahoo Groups for C&C communication
+
Aleksandr Matrosov
+
N
NGRBot spreads via chat
+
Niranjan Jayanand
+
Necurs Quick Analysis
+
RootBSD
+
Neosploit gets Java 0-Day
+
Darryl
+
Nepalese government websites compromised to serve Zegost RAT
+
Gianluca Giuliani
+
,
Elad Sharf
+
NetTraveler APT gets a makeover for 10th birthday
+
Kurt Baumgartner
+
,
Costin Raiu
+
NetTraveler is back: the 'Red Star' APT returns with new tricks
+
Costin Raiu
+
New Apple Mac trojan called OSX/Crisis discovered
+
Lysa Myers
+
New Chinese exploit pack
+
Darryl
+
New CryptoLocker spreads via removable drives
+
Abigail Pichel
+
New GamaPoS malware piggybacks on Andromeda botnet; spreads in 13 US states
+
Jay Yaneza
+
New IE Zero-Day used in targeted attacks
+
Vikram Thakur
+
New IceIX (ZeuS variant) changes its encryption method (again)
+
Andreas Baumhof
+
New Mac malware discovered on attendee computer at anti-surveillance workshop
+
Brian Donohue
+
New Mahdi updates, new C2 server
+
Seculert
+
New POS malware emerges - Punkey
+
Eric Merritt
+
New RATs emerge from leaked Njw0rm source code
+
Michael Marcos
+
New Xtreme RAT attacks US, Israel, and other foreign governments
+
Nart Villeneuve
+
New crimeware attacks LatAm bank users
+
Jorge Mieres
+
New crypto-ransomware JIGSAW plays nasty games
+
Jasen Sumalapao
+
New crypto-ransomware emerge in the wild
+
Eduardo Altares II
+
New point-of-sale malware distributed by Andromeda botnet
+
Lucian Constantin
+
New ransomware plays its victims an audio file, over and over and over…
+
Elizabeth Bookman
+
New trojan found: Admin.HLP leaks organizations data
+
Eyal Benishti
+
NewPosThings has new PoS things
+
Jay Yaneza
+
Newly detected Crisis virus infects Windows, Macs and virtual machines
+
Robert Lemos
+
Newly launched ‘HTTP-based botnet setup as a service’ empowers novice cybercriminals with bulletproof hosting capabilities
+
Dancho Danchev
+
Ngrbot steals information and mine Bitcoins
+
SonicWALL UTM research team
+
NitlovePOS: another new POS malware
+
Nart Villeneuve
+
,
Daniel Regalado
+
Nitol DDoS botnet discovered in China
+
Anonyme
+
Not just a one-trick PonyDOS
+
Jeff Edwards
+
Nuevo botnet contra Mexico: Karn!v0r3x
+
Jose Dos Santos Torrijos
+
Nymaim - obfuscation chronicles
+
Jean-Ian Boutin
+
O
OSX Kitmos analysis
+
Steeve Barbeau
+
OSX.Iservice technical details
+
Elia Florio
+
OSX.iService its not going to iWork for you
+
Ben Nahorney
+
OSX/Crisis has been used as part of a targeted attack
+
Lysa Myers
+
OSX/Flashback - The first malware to infect hundreds of thousands of Apple Mac
+
Pierre-Marc Bureau
+
Obama order sped up wave of cyberattacks against Iran
+
David E. Sanger
+
Olmasco bootkit: next circle of TDL4 evolution (or not)
+
Aleksandr Matrosov
+
On botnets that use DNS for command and control
+
Felix C. Freiling
+
,
Christian J. Dietrich
+
,
Christian Rossow
+
,
…
On the analysis of the ZeuS botnet crimeware toolkit
+
Hamad Binsalleeh
+
,
Thomas Ormerod
+
,
Amine Boukhtouta
+
,
…
One Sinowal trojan + one gang = hundreds of thousands of compromised accountS
+
RSA FraudAction Research Lab
+
Operation Bot Roast II
+
FBI
+
Operation SnowMan: DeputyDog actor compromises US veterans of foreign wars website
+
Ned Moran
+
,
Darien Kindlund
+
,
Dan Caselden
+
,
…
Operation Socialist The Inside Story Of How British Spies Hacked Belgium’s Largest Telco
+
Ryan Gallagher
+
Over 9 million PCs infected - ZeroAccess botnet uncovered
+
James Wyke
+
Overcoming reputation and proof-of-work systems in botnets
+
Andrew White
+
,
Alan Tickle
+
,
Andrew Clark
+
Overview: inside the ZeuS trojan’s source code
+
Steve Ragan
+
Owning Kraken zombies
+
Cody Pierce
+
P
P2P botnet Kelihos.B with 100.000 nodes sinkholed
+
Tillmann Werner
+
PETYA crypto-ransomware overwrites MBR to lock users out of their computers
+
Jasen Sumalapao
+
Panda Security uncovers bot-killing malware
+
Brian Prince
+
Panel Gendarmerie
+
Malekal Morte
+
Panel Supern0va et virus gendarmerie
+
Malekal Morte
+
Panel Virus Gendarmerie : Ratio 0.36%
+
Malekal Morte
+
Part virus, part botnet, spreading fast: Ramnit moves past Facebook passwords
+
Sean Gallagher
+
Peer-to-peer botnets: overview and case study
+
Julian B. Grizzard
+
,
Vikram Sharma
+
,
Chris Nunnery
+
,
…
PeerRush: mining for unwanted P2P traffic
+
Babak Rahbarinia
+
,
Roberto Perdisci
+
,
Andrea Lanzi
+
,
…
Petya ransomware skips the files and encrypts your hard drive instead
+
Lawrence Abrams
+
Playing cops & robbers with banks & browsers
+
Fred Gutierrez
+
PlugX malware: A good hacker is an apologetic hacker
+
Dmitry Tarakanov
+
PlugX: new tool for a not so new campaign
+
Roland Dela Paz
+
PlugX: some uncovered points
+
Fabien Perigaud
+
PoS RAM scraper malware; past, present and future
+
Numaan Huq
+
Poison Ivy 2.3.0 Documentation
+
Shapeless
+
Poison Ivy: assessing damage and extracting intelligence
+
FireEye
+
PoisonIvy adapts to communicate through authentication proxies
+
Shusei Tomonaga
+
Poisoned search results: How hackers have automated search engine poisoning attacks to distribute malware
+
Fraser Howard
+
,
Onur Komili
+
PokerAgent botnet stealing over 16,000 Facebook credentials
+
Robert Lipovsky
+
Police Trojan crosses the Atlantic, now targets USA and Canada
+
David Sancho
+
Ponmocup analysis
+
Tom U
+
Post-mortem of a zombie: Conficker cleanup after six years
+
Hadi Asghari
+
,
Michael Ciere
+
,
Michel J.G. van Eeten
+
Pramro and Sality - two PEs in a pod
+
Scott Molenkamp
+
Proactive detection of network security incidents
+
Katarzyna Gorzelak
+
,
Tomasz Grudziecki
+
,
Paweł Jacewicz
+
,
…
Proactive detection of security incidents II - Honeypots
+
CERT Polska
+
Probing the Gozi-Prinimalka campaign
+
Ivan Macalintal
+
Pushdo botnet gets DGA update, over 6,000 machines host new variant
+
Danielle Walker
+
Q
Qadars: un nouveau malware bancaire avec un composant mobile
+
Daniel Lunghi
+
Quervar – Induc.C reincarnate
+
Robert Lipovsky
+
QuickPost: Flame & Volatility
+
Michael Hale Ligh
+
R
REVETON Ransomware Spreads with Old Tactics, New Infection Method
+
Alvin Bacani
+
,
David Sancho
+
,
Jamz Yaneza
+
REvil ransomware gang's web sites mysteriously shut down
+
Lawrence Abrams
+
RIG exploit kit strikes oil
+
Andrew Tsonchev
+
,
Levi Gundert
+
,
Emmanuel Tacheau
+
,
…
Ransom.II - UGC payment for USA - Windows Genuine impersonation for DE
+
Kafeine
+
Ransomware : Smile you're on camera - Reveton.C new landing pages
+
Kafeine
+
Ransomware : la sulfureuse hypothèse sur la situation chez Norsk Hydro
+
Catalin Cimpanu
+
Ransomware Casier - Sharing Design with Lyposit - Gaelic & Persian (
+
Kafeine
+
Ransomware Fake Microsoft Security Essentials
+
Malekal Morte
+
Ransomware and Silence Locker control panel
+
Peter Coogan
+
Ransomware crimeware kits
+
Peter Coogan
+
Ransomware or Wiper? LockerGoga Straddles the Line
+
Nick Biasini
+
Ransomware report: the rise of BandarChor
+
FSLabs
+
Ransomware « Trojan.Casier » Panel
+
Malekal morte
+
Ransomware ‘Holds Up’ victims
+
Sravan Ganachari
+
Ransomware: playing on your fears
+
Raymond Roberts
+
Redkit - one account = one color
+
Kafeine
+
Redkit : No more money ! Traffic US, CA, GB, AU
+
Kafeine
+
Relentless Zbot and anti-emulations
+
Anoirel Issa
+
Research Win32/Slenfbot
+
Hamish O'Dea
+
,
David Wood
+
Researchers: Bredolab still lurking, though severely injured
+
Steve Ragan
+
Reversing Andromeda-Gamarue botnet
+
Rashid Bhatt
+
Reversing malware loaders - The Matsnu-A Case
+
Kyriakos Economou
+
Reversing the wrath of Khan
+
Jeff Edwards
+
Reveton += HU, LV, SK, SI, TR (!), RO - So spreading accross Europe with 6 new Design
+
Kafeine
+
Reveton Autumn Collection += AU,CZ, IE, NO & 17 new design
+
Kafeine
+
Reveton can speak now !
+
Kafeine
+
Richard Clarke on who was behind the Stuxnet attack
+
Ron Rosenbaum
+
RootSmart Android malware
+
Quequero
+
RootSmart malware utilizes GingerBreak root exploit
+
Xuxian Jiang
+
Rovnix Reloaded: new step of evolution
+
David Harley
+
,
Aleksandr Matrosov
+
,
Eugene Rodionov
+
Rovnix bootkit framework updated
+
Aleksandr Matrosov
+
Rovnix.D: the code injection story
+
Aleksandr Matrosov
+
Russian service online to check the detection of malware
+
Jorge Mieres
+
Réflexions pour un plan d'action contre les botnets
+
Eric Freyssinet
+
S
SDBot IRC botnet continues to make waves
+
Loucif Kharouni
+
SGNET: a worldwide deployable framework to support the analysis of malware threat models
+
Corrado Leita
+
,
Marc Dacier
+
SIM-ple: mobile handsets are weak link in latest online banking fraud scheme
+
Amit Klein
+
SIRv12
+
Joe Faulhaber
+
,
David Felstead
+
,
Paul Henry
+
,
…
SIRv12: the obstinacy of Conficker
+
Joe Blackbird
+
SKyWIper: A complex malware for targeted attacks
+
SKyWIper Analysis Team
+
,
Budapest University of Technology and Economics
+
SPL exploit kit – now with CVE-2013-0422
+
Denis Laskov
+
SamSam Ransomware Evolves Its Tactics Towards Targeting Whole Companies
+
Tara Seals
+
SamSam ransomware designed to inundate targeted networks with thousands of copies of itself
+
Bradley Barth
+
Saudi Aramco hit by computer virus
+
Charles Arthur
+
Say hello to Tinba: world’s smallest trojan-banker
+
Peter Kruse
+
Secrets of the Comfoo masters
+
Joe Stewart
+
,
Don Jackson
+
Security Response Android.Counterclank
+
Nino Gutierrez
+
,
Asuka Yamamoto
+
Security alert: SpamSoldier
+
Derek Halliday
+
Security alert: new TGLoader Android malware utilizes the exploid root exploit
+
Xuxian Jiang
+
Navigation menu
Personal tools
Log in
Namespaces
Property
Discussion
Variants
Views
Read
View source
View history
More
Search
Navigation
Main page
Recent changes
Random page
Help about MediaWiki
Tools
What links here
Related changes
Upload file
Special pages
Printable version
Permanent link
Page information
Browse properties