Property:Author
From Botnets.fr
Jump to navigation
Jump to search
This is a property of type
Page
.
Author
Usage
1030
previous 500
20
50
100
250
500
next 500
Filter
<p>The <a target="_blank" rel="nofollow noreferrer noopener" class="external text" href="https://www.semantic-mediawiki.org/wiki/Help:Property_page/Filter">search filter</a> allows the inclusion of <a target="_blank" rel="nofollow noreferrer noopener" class="external text" href="https://www.semantic-mediawiki.org/wiki/Help:Query_expressions">query expressions</a> such as <code>~</code> or <code>!</code>. The selected <a target="_blank" rel="nofollow noreferrer noopener" class="external text" href="https://www.semantic-mediawiki.org/wiki/Query_engine">query engine</a> might also support case insensitive matching or other short expressions like:</p><ul><li><code>in:</code> result should include the term, e.g. '<code>in:Foo</code>'</li></ul><ul><li><code>not:</code> result should to not include the term, e.g. '<code>not:Bar</code>'</li></ul>
Showing 443 pages using this property.
I
Inside the world of the Citadel trojan
+
Ryan Sherstobitoff
+
Inside view of Lyposit aka (for its friends) Lucky LOCKER
+
Kafeine
+
Insights from the analysis of the Mariposa botnet
+
Amine Boukhtouta
+
,
Prosenjit Sinha
+
,
Mourad Debbabi
+
,
…
Interconnection of Gauss with Stuxnet, Duqu & Flame
+
Eugene Rodionov
+
International cyber ring that infected millions of computers dismantled
+
Press Office
+
Internet Census 2012, port scanning /0 using insecure embedded devices
+
Carna Botnet
+
Introducing Ponmocup-Finder
+
Tom U
+
It’s 2012 and Armageddon has arrived
+
Jeff Edwards
+
It’s not the end of the world: DarkComet misses by a mile
+
Jeff Edwards
+
J
Java Runtime Environment 1.7 Zero-Day Exploit Delivers Backdoor
+
Manuel Gatbunton
+
Java Zero-Days and the Blackhole Exploit Kit
+
Jon Oliver
+
K
Karagny.L unpack
+
RootBSD
+
Kaspersky Lab et Seculert annoncent la récente découverte de « Madi », une nouvelle attaque de cyberespionnage au Moyen‑Orient
+
Kaspersky Lab
+
Kaspersky security bulletin 2015. Overall statistics for 2015
+
Maria Garnaeva
+
,
Jornt van der Wiel
+
,
Denis Makrushin
+
,
…
Kelihos botnet appears again with new variant
+
Jay Pfoutz
+
Kelihos botnet trying to expand by harnessing Russian national sentiments
+
Ran Mosessco
+
,
Nick Griffin
+
,
Brandon Laux
+
Kelihos is dead. Long live Kelihos
+
Gunter Ollmann
+
Kelihos is dead… No wait… Long live Kelihos! Again!
+
Phil Hay
+
Kelihos/Hlux botnet returns with new techniques
+
Maria Garnaeva
+
Kelihos: not alien resurrection, more attack of the clones
+
David Harley
+
King of spam:Festi botnet analysis
+
Aleksandr Matrosov
+
,
Eugene Rodionov
+
Know your enemy: tracking botnets
+
Thorsten Holz
+
,
Paul Bächer
+
,
Markus Kötter
+
,
…
Koobface botnet master KrotReal back in business, distributes ransomware and promotes BHSEO service/product
+
Dancho Danchev
+
Koobface, un écosystème cybercriminel ou le conte des Mille et une nuits ?
+
Eric Freyssinet
+
Kore exploit kit
+
Darryl
+
Kraken botnet infiltration
+
Pedram Amini
+
L
Large-scale analysis of malware downloaders
+
Christian Rossow
+
,
Christian Dietrich
+
,
Herbert Bosz
+
Latest Kelihos botnet shut down live at RSA Conference 2013
+
Michael Mimoso
+
Latest SpyEye botnet active and cheaper
+
Umesh Wanve
+
Latin American banks under fire from the Mexican VOlk-botnet
+
Jorge Mieres
+
Le dropper de CTB-Locker
+
Christophe Rieunier
+
Learning stateful models for network honeypots
+
Konrad Rieck
+
,
Tammo Krueger
+
,
Hugo Gascon
+
,
…
Legal implications of countering botnets
+
Liis Vihul
+
,
Christian Czosseck
+
,
Katharina Ziolkowski
+
,
…
Leouncia - Yet another backdoor
+
Atif Mushtaq
+
Leouncia - Yet another backdoor - Part 2
+
Atif Mushtaq
+
Library file in certain Android apps connects to C&C servers
+
Weichao Sun
+
Lifting the lid on the Redkit exploit kit (Part 1)
+
Fraser Howard
+
Lights Out: Dragonfly is on the move
+
Sariel Moshe
+
Linux/Cdorked.A: New Apache backdoor being used in the wild to serve Blackhole
+
Pierre-Marc Bureau
+
Locky Ransomware switches to the Lukitus extension for Encrypted Files
+
Lawrence Abrams
+
LogPOS - new point of sale malware using mailslots
+
Nick Hoffman
+
Long life to Kelihos!
+
Gianluca Giuliani
+
Look what I found: it's a Pony!
+
Anat Davidi
+
M
MDK: the largest mobile botnet in China
+
Flora Liu
+
MMD-0056-2016 - Linux/Mirai, how an old ELF malcode is recycled
+
Unixfreaxjp
+
MP-DDoser: A rapidly improving DDoS threat
+
Jeff Edwards
+
MP-DDoser:Monitoring a rapidly improving DDoS threat
+
Jeff Edwards
+
MSIE 0-day exploit CVE-2014-0322 - Possibly targeting French aerospace association
+
Alex Watson
+
,
Victor Chin
+
MSRT April 2012: Win32/Claretore
+
Tim Liu
+
MSRT April 2014 – Ramdo
+
Shawn Wang
+
MSRT March 2012: breaking bad
+
Rex Plantado
+
MSRT November '12 - Weelsof around the world
+
Patrick Estavillo
+
MSRT September '12 - Medfos, hijacking your daily search
+
Shawn Wang
+
MSRT march: three hioles in one
+
Shawn Wang
+
Maazben: best of both worlds
+
Rodel Mendrez
+
Mac BackDoor.Wirenet.1 config extractor
+
RootBSD
+
,
Malware.lu
+
Mac Flashback exploiting unpatched Java vulnerability
+
Brod
+
Mac spyware found at Oslo Freedom Forum
+
Sean Sullivan
+
Madi is back - New Tricks and a new Command&Control server
+
Nicolas Brulez
+
Mahdi malware finds 150 new targets including U.S. and Germany, gets more evasive
+
Mike Lennon
+
Major shift in strategy for ZeroAccess rootkit malware, as it shifts to user-mode
+
James Wyke
+
Malicious Apache module injects Iframes
+
Denis Sinegubko
+
Malicious Apache module used for content injection: Linux/Chapro.A
+
Pierre-Marc Bureau
+
Malware 2 - from infection to persistence
+
Mark Nicholls
+
Malware Memory Analysis - Volatility
+
Basement Tech
+
Malware Uses Google Go Language
+
Flora Liu
+
Malware analysis Rannoh/Matsnu
+
Paul Rascagnères
+
,
Hugo Caron
+
Malware analysis of the Lurk downloader
+
Brett Stone-Gross
+
Malware analysis tutorial 32: exploration of botnet client
+
Dr. Xiang Fu
+
Malware attacking POS systems
+
Adam Blaszczyk
+
Malware discovered developed with Google's "Go" programming language
+
Steve Ragan
+
Malware evolving to defeat anti-DDoS services like CloudFlare?
+
Alexis Dorais-Joncas
+
Malware for everyone - Aldi Bot at a discount price
+
Chris von Eitzen
+
Malware hunting with the Sysinternals tools
+
Mark Russinovich
+
Malware pandemics
+
Philip Porras
+
,
Hassen Saidi
+
,
Vinod Yegneswaran
+
Malware targeting Windows 8 uses Google Docs
+
Takashi Katsuki
+
Massive search fraud botnet seized by Microsoft and Symantec
+
Sean Gallagher
+
Mastermind behind Gozi bank malware charged along with two others
+
Kim Zetter
+
Measuring and detecting Fast-Flux service networks
+
Thorsten Holz
+
,
Christian Gorecki
+
,
Konrad Rieck
+
,
…
Measuring and detecting malware downloads in live network traffic
+
Manos Antonakakis
+
,
Babak Rahbarinia
+
,
Roberto Perdisci
+
,
…
Measuring botnet populations
+
Jose Nazario
+
Meet "Red Dot exploit toolkit"
+
Kafeine
+
Meet CritXPack (Previously Vintage Pack)
+
Kafeine
+
Meet ProPack Exploit Pack - yes that's a lot of pack
+
Kafeine
+
Meet ‘Flame’, the massive spy malware infiltrating Iranian computers
+
Kim Zetter
+
Mexican Twitter-controlled botnet unpicked
+
John Leyden
+
Microsoft and Symantec take down Bamital botnet that hijacks online searches
+
Richard Boscovich
+
Microsoft and financial services industry leaders target cybercriminal operations from ZeuS botnets
+
Richard Domingues Boscovich
+
Microsoft disrupts the emerging Nitol botnet being spread through an unsecure supply chain
+
Richard Domingues Boscovich
+
Microsoft neutralizes Kelihos botnet, names defendant in case
+
Richard Domingues Boscovich
+
Microsoft partners with Interpol, industry to disrupt global malware attack affecting more than 770,000 PCs in past six months
+
Rex Plantado
+
,
Tommy Blizard
+
,
Rodel Finones
+
,
…
Microsoft security updates January 2016
+
Kurt Baumgartner
+
MoVP 1.3 Desktops, heaps, and ransomware
+
Michael Hale Ligh
+
Mocbot spam analysis
+
Joe Stewart
+
Monkif botnet hides commands in JPEGs
+
Vikas Taneja
+
More Flame/Skywiper CNC behavior uncovered
+
Ali Islam
+
More details of the Dorifel servers
+
Rickey Gevers
+
Morto worm sets a (DNS) record
+
Cathal Mullaney
+
Mpack installs ultra-invisible trojan
+
Gregg Keizer
+
Multitenancy Botnets thwart threat analysis
+
Martin
+
Mysterious Avatar rootkit with API, SDK, and Yahoo Groups for C&C communication
+
Aleksandr Matrosov
+
N
NGRBot spreads via chat
+
Niranjan Jayanand
+
Necurs Quick Analysis
+
RootBSD
+
Neosploit gets Java 0-Day
+
Darryl
+
Nepalese government websites compromised to serve Zegost RAT
+
Gianluca Giuliani
+
,
Elad Sharf
+
NetTraveler APT gets a makeover for 10th birthday
+
Kurt Baumgartner
+
,
Costin Raiu
+
NetTraveler is back: the 'Red Star' APT returns with new tricks
+
Costin Raiu
+
New Apple Mac trojan called OSX/Crisis discovered
+
Lysa Myers
+
New Chinese exploit pack
+
Darryl
+
New CryptoLocker spreads via removable drives
+
Abigail Pichel
+
New GamaPoS malware piggybacks on Andromeda botnet; spreads in 13 US states
+
Jay Yaneza
+
New IE Zero-Day used in targeted attacks
+
Vikram Thakur
+
New IceIX (ZeuS variant) changes its encryption method (again)
+
Andreas Baumhof
+
New Mac malware discovered on attendee computer at anti-surveillance workshop
+
Brian Donohue
+
New Mahdi updates, new C2 server
+
Seculert
+
New POS malware emerges - Punkey
+
Eric Merritt
+
New RATs emerge from leaked Njw0rm source code
+
Michael Marcos
+
New Xtreme RAT attacks US, Israel, and other foreign governments
+
Nart Villeneuve
+
New crimeware attacks LatAm bank users
+
Jorge Mieres
+
New crypto-ransomware JIGSAW plays nasty games
+
Jasen Sumalapao
+
New crypto-ransomware emerge in the wild
+
Eduardo Altares II
+
New point-of-sale malware distributed by Andromeda botnet
+
Lucian Constantin
+
New ransomware plays its victims an audio file, over and over and over…
+
Elizabeth Bookman
+
New trojan found: Admin.HLP leaks organizations data
+
Eyal Benishti
+
NewPosThings has new PoS things
+
Jay Yaneza
+
Newly detected Crisis virus infects Windows, Macs and virtual machines
+
Robert Lemos
+
Newly launched ‘HTTP-based botnet setup as a service’ empowers novice cybercriminals with bulletproof hosting capabilities
+
Dancho Danchev
+
Ngrbot steals information and mine Bitcoins
+
SonicWALL UTM research team
+
NitlovePOS: another new POS malware
+
Nart Villeneuve
+
,
Daniel Regalado
+
Nitol DDoS botnet discovered in China
+
Anonyme
+
Not just a one-trick PonyDOS
+
Jeff Edwards
+
Nuevo botnet contra Mexico: Karn!v0r3x
+
Jose Dos Santos Torrijos
+
Nymaim - obfuscation chronicles
+
Jean-Ian Boutin
+
O
OSX Kitmos analysis
+
Steeve Barbeau
+
OSX.Iservice technical details
+
Elia Florio
+
OSX.iService its not going to iWork for you
+
Ben Nahorney
+
OSX/Crisis has been used as part of a targeted attack
+
Lysa Myers
+
OSX/Flashback - The first malware to infect hundreds of thousands of Apple Mac
+
Pierre-Marc Bureau
+
Obama order sped up wave of cyberattacks against Iran
+
David E. Sanger
+
Olmasco bootkit: next circle of TDL4 evolution (or not)
+
Aleksandr Matrosov
+
On botnets that use DNS for command and control
+
Felix C. Freiling
+
,
Christian J. Dietrich
+
,
Christian Rossow
+
,
…
On the analysis of the ZeuS botnet crimeware toolkit
+
Hamad Binsalleeh
+
,
Thomas Ormerod
+
,
Amine Boukhtouta
+
,
…
One Sinowal trojan + one gang = hundreds of thousands of compromised accountS
+
RSA FraudAction Research Lab
+
Operation Bot Roast II
+
FBI
+
Operation SnowMan: DeputyDog actor compromises US veterans of foreign wars website
+
Ned Moran
+
,
Darien Kindlund
+
,
Dan Caselden
+
,
…
Operation Socialist The Inside Story Of How British Spies Hacked Belgium’s Largest Telco
+
Ryan Gallagher
+
Over 9 million PCs infected - ZeroAccess botnet uncovered
+
James Wyke
+
Overcoming reputation and proof-of-work systems in botnets
+
Andrew White
+
,
Alan Tickle
+
,
Andrew Clark
+
Overview: inside the ZeuS trojan’s source code
+
Steve Ragan
+
Owning Kraken zombies
+
Cody Pierce
+
P
P2P botnet Kelihos.B with 100.000 nodes sinkholed
+
Tillmann Werner
+
PETYA crypto-ransomware overwrites MBR to lock users out of their computers
+
Jasen Sumalapao
+
Panda Security uncovers bot-killing malware
+
Brian Prince
+
Panel Gendarmerie
+
Malekal Morte
+
Panel Supern0va et virus gendarmerie
+
Malekal Morte
+
Panel Virus Gendarmerie : Ratio 0.36%
+
Malekal Morte
+
Part virus, part botnet, spreading fast: Ramnit moves past Facebook passwords
+
Sean Gallagher
+
Peer-to-peer botnets: overview and case study
+
Julian B. Grizzard
+
,
Vikram Sharma
+
,
Chris Nunnery
+
,
…
PeerRush: mining for unwanted P2P traffic
+
Babak Rahbarinia
+
,
Roberto Perdisci
+
,
Andrea Lanzi
+
,
…
Petya ransomware skips the files and encrypts your hard drive instead
+
Lawrence Abrams
+
Playing cops & robbers with banks & browsers
+
Fred Gutierrez
+
PlugX malware: A good hacker is an apologetic hacker
+
Dmitry Tarakanov
+
PlugX: new tool for a not so new campaign
+
Roland Dela Paz
+
PlugX: some uncovered points
+
Fabien Perigaud
+
PoS RAM scraper malware; past, present and future
+
Numaan Huq
+
Poison Ivy 2.3.0 Documentation
+
Shapeless
+
Poison Ivy: assessing damage and extracting intelligence
+
FireEye
+
PoisonIvy adapts to communicate through authentication proxies
+
Shusei Tomonaga
+
Poisoned search results: How hackers have automated search engine poisoning attacks to distribute malware
+
Fraser Howard
+
,
Onur Komili
+
PokerAgent botnet stealing over 16,000 Facebook credentials
+
Robert Lipovsky
+
Police Trojan crosses the Atlantic, now targets USA and Canada
+
David Sancho
+
Ponmocup analysis
+
Tom U
+
Post-mortem of a zombie: Conficker cleanup after six years
+
Hadi Asghari
+
,
Michael Ciere
+
,
Michel J.G. van Eeten
+
Pramro and Sality - two PEs in a pod
+
Scott Molenkamp
+
Proactive detection of network security incidents
+
Katarzyna Gorzelak
+
,
Tomasz Grudziecki
+
,
Paweł Jacewicz
+
,
…
Proactive detection of security incidents II - Honeypots
+
CERT Polska
+
Probing the Gozi-Prinimalka campaign
+
Ivan Macalintal
+
Pushdo botnet gets DGA update, over 6,000 machines host new variant
+
Danielle Walker
+
Q
Qadars: un nouveau malware bancaire avec un composant mobile
+
Daniel Lunghi
+
Quervar – Induc.C reincarnate
+
Robert Lipovsky
+
QuickPost: Flame & Volatility
+
Michael Hale Ligh
+
R
REVETON Ransomware Spreads with Old Tactics, New Infection Method
+
Alvin Bacani
+
,
David Sancho
+
,
Jamz Yaneza
+
REvil ransomware gang's web sites mysteriously shut down
+
Lawrence Abrams
+
RIG exploit kit strikes oil
+
Andrew Tsonchev
+
,
Levi Gundert
+
,
Emmanuel Tacheau
+
,
…
Ransom.II - UGC payment for USA - Windows Genuine impersonation for DE
+
Kafeine
+
Ransomware : Smile you're on camera - Reveton.C new landing pages
+
Kafeine
+
Ransomware : la sulfureuse hypothèse sur la situation chez Norsk Hydro
+
Catalin Cimpanu
+
Ransomware Casier - Sharing Design with Lyposit - Gaelic & Persian (
+
Kafeine
+
Ransomware Fake Microsoft Security Essentials
+
Malekal Morte
+
Ransomware and Silence Locker control panel
+
Peter Coogan
+
Ransomware crimeware kits
+
Peter Coogan
+
Ransomware or Wiper? LockerGoga Straddles the Line
+
Nick Biasini
+
Ransomware report: the rise of BandarChor
+
FSLabs
+
Ransomware « Trojan.Casier » Panel
+
Malekal morte
+
Ransomware ‘Holds Up’ victims
+
Sravan Ganachari
+
Ransomware: playing on your fears
+
Raymond Roberts
+
Redkit - one account = one color
+
Kafeine
+
Redkit : No more money ! Traffic US, CA, GB, AU
+
Kafeine
+
Relentless Zbot and anti-emulations
+
Anoirel Issa
+
Research Win32/Slenfbot
+
Hamish O'Dea
+
,
David Wood
+
Researchers: Bredolab still lurking, though severely injured
+
Steve Ragan
+
Reversing Andromeda-Gamarue botnet
+
Rashid Bhatt
+
Reversing malware loaders - The Matsnu-A Case
+
Kyriakos Economou
+
Reversing the wrath of Khan
+
Jeff Edwards
+
Reveton += HU, LV, SK, SI, TR (!), RO - So spreading accross Europe with 6 new Design
+
Kafeine
+
Reveton Autumn Collection += AU,CZ, IE, NO & 17 new design
+
Kafeine
+
Reveton can speak now !
+
Kafeine
+
Richard Clarke on who was behind the Stuxnet attack
+
Ron Rosenbaum
+
RootSmart Android malware
+
Quequero
+
RootSmart malware utilizes GingerBreak root exploit
+
Xuxian Jiang
+
Rovnix Reloaded: new step of evolution
+
David Harley
+
,
Aleksandr Matrosov
+
,
Eugene Rodionov
+
Rovnix bootkit framework updated
+
Aleksandr Matrosov
+
Rovnix.D: the code injection story
+
Aleksandr Matrosov
+
Russian service online to check the detection of malware
+
Jorge Mieres
+
Réflexions pour un plan d'action contre les botnets
+
Eric Freyssinet
+
S
SDBot IRC botnet continues to make waves
+
Loucif Kharouni
+
SGNET: a worldwide deployable framework to support the analysis of malware threat models
+
Corrado Leita
+
,
Marc Dacier
+
SIM-ple: mobile handsets are weak link in latest online banking fraud scheme
+
Amit Klein
+
SIRv12
+
Joe Faulhaber
+
,
David Felstead
+
,
Paul Henry
+
,
…
SIRv12: the obstinacy of Conficker
+
Joe Blackbird
+
SKyWIper: A complex malware for targeted attacks
+
SKyWIper Analysis Team
+
,
Budapest University of Technology and Economics
+
SPL exploit kit – now with CVE-2013-0422
+
Denis Laskov
+
SamSam Ransomware Evolves Its Tactics Towards Targeting Whole Companies
+
Tara Seals
+
SamSam ransomware designed to inundate targeted networks with thousands of copies of itself
+
Bradley Barth
+
Saudi Aramco hit by computer virus
+
Charles Arthur
+
Say hello to Tinba: world’s smallest trojan-banker
+
Peter Kruse
+
Secrets of the Comfoo masters
+
Joe Stewart
+
,
Don Jackson
+
Security Response Android.Counterclank
+
Nino Gutierrez
+
,
Asuka Yamamoto
+
Security alert: SpamSoldier
+
Derek Halliday
+
Security alert: new TGLoader Android malware utilizes the exploid root exploit
+
Xuxian Jiang
+
Security alert: new variants of Legacy Native (LeNa) identified
+
Tim Wyatt
+
Security experts detected new Twitter-controlled botnet
+
Inconnu
+
Shamoon the Wiper in details
+
Dmitry Tarakanov
+
Shamoon the Wiper: further details (Part II)
+
Dmitry Tarakanov
+
Shamoon the wiper - copycats at work
+
GReAT
+
Shedding light on the NeoSploit Exploit Kit
+
Daniel Chechik
+
Shylock financial malware back 'with a vengeance'
+
Taylor Armerding
+
Sinowal analysis (Windows 7, 32-bit)
+
Evild3ad
+
Sinowal: MBR rootkit never dies! (and it always brings some new clever features)
+
Andrea Allievi
+
Sinowal: the evolution of MBR rootkit continues
+
Andrea Allievi
+
Skunkx DDoS bot analysis
+
Jose Nazario
+
Skynet, a Tor-powered botnet straight from Reddit
+
Claudio Guarnieri
+
,
Mark Schloesser
+
Smartcard vulnerabilities in modern banking malware
+
Aleksandr Matrosov
+
Social networks – A bonanza for cybercriminals
+
Ruslan Stoyanov
+
Sony PlayStation's site SQL injected, redirecting to rogue security software
+
Dancho Danchev
+
Sony/Destover: mystery North Korean actor’s destructive and past network activity
+
Kurt Baumgartner
+
Sopelka Botnet: three banking trojans and one banking panel
+
Jose Miguel Esparza
+
Source Code for IoT Botnet ‘Mirai’ Released
+
Brian Krebs
+
Spam botnets: The fall of Grum and the rise of Festi
+
Thomas Morrison
+
Spambot evolution 2011
+
SecureWorks' Counter Threat Unit
+
Spread of Darkness...Details on the public release of the Darkness DDoS bot
+
Mila Parkour
+
,
André M. DiMino
+
SpyEye being kicked to the curb by its customers?
+
Sean Bodmer
+
Stamp EK (aka SofosFO) now showing "Blackhole 2.0 Like" landing pages
+
Kafeine
+
Static analysis of Dalvik bytecode and reflection in Android
+
Erik Ramsgaard Wognsen
+
,
Henrik Søndberg Karlsen
+
Stealing money from ATMs with malware
+
Anonymous
+
Stealthy peer-to-peer C&C over SMB pipes
+
Raphael Mudge
+
Stealthy router-based botnet worm squirming
+
Ryan Naraine
+
Step-by-step reverse engineering malware: ZeroAccess / Max++ / Smiscer crimeware rootkit
+
Giuseppe Bonfa
+
Stolen passwords allowed hackers to steal over one billion rubles
+
Thu Pham
+
Study of malware obfuscation techniques
+
Rodrigo Branco
+
Survey on network-based botnet detection methods
+
Sebastián García
+
,
Alejandro Zunino
+
,
Marcelo Campo
+
Symantec/Android.Ackposts
+
Asuka Yamamoto
+
Symantec/Backdoor.Arcomrat
+
Branko Spasojevic
+
Symantec/W32.Zorenium
+
Kevin Savage
+
T
TDI - a new element in old TDSS story
+
Artem I. Baranov
+
TDL3 : The rootkit of all evil
+
Aleksandr Matrosov
+
,
Eugene Rodionov
+
TDL3 : Why so serious
+
Nguyễn Phố Sơn
+
TDL4 - Top Bot
+
Sergey Golovanov
+
,
Igor Soumenkov
+
TDL4 reloaded: Purple Haze all in my brain
+
David Harley
+
,
Aleksandr Matrosov
+
,
Eugene Rodionov
+
TDSS botnet: full disclosure
+
Andrey Rassokhin
+
,
Dmitry Oleksyuk
+
Taking down botnets: Microsoft and the Rustock botnet
+
Richard Boscovich
+
Tales from Crisis, Chapter 1: The dropper’s box of tricks
+
Osxreverser
+
Tales from Crisis, Chapter 2: Backdoor’s first steps
+
Osxreverser
+
Tales from Crisis, Chapter 3: The Italian rootkit job
+
Osxreverser
+
Tales from Crisis, Chapter 4: a ghost in the network
+
Osxreverser
+
Targeted attacks and Ukraine
+
Mikko Hypponen
+
,
Timo Hirvonen
+
Targeted destructive malware explained: Troj/Mdrop-ELD
+
Paul Baccas
+
Targeted information stealing attacks in South Asia use email, signed binaries
+
Jean-Ian Boutin
+
Tatanga attack exposes chipTAN weaknesses
+
Amit Klein
+
Tatanga: a new banking trojan with MitB functions
+
Jose Miguel Esparza
+
,
Jozsef Gegeny
+
Tequila botnet leads to phishing attack
+
Danielle Anne Veluz
+
The "Red October" campaign - An advanced cyber espionage network targeting diplomatic and government agencies
+
GReAT
+
The 'Penquin' Turla
+
Kurt Baumgartner
+
,
Costin Raiu
+
The ACCDFISA malware family – Ransomware targeting Windows servers
+
Fabian Wosar
+
The Andromeda/Gamarue botnet is on the rise again
+
Paul Rascagnères
+
The Coreflood report
+
Joe Stewart
+
The Cridex trojan targets 137 financial organizations in one go
+
Daniel Chechik
+
The DGA of Symmi
+
Johannes Bader
+
The Dark Alleys of Madison Avenue: Understanding Malicious Advertisements
+
Apostolis Zarras
+
,
Alexandros Kapravelos
+
,
Gianluca Stringhini
+
,
…
The Dorkbot rises
+
Bernadette Irinco
+
The Epic Turla operation
+
GReAT
+
The Flame: questions and answers
+
Alexander Gostev
+
The IMDDOS botnet: discovery and analysis
+
Manos Antonakakis
+
,
Christopher Elisan
+
,
Aldrich de Mata
+
,
…
The Madi campaign - Part II
+
Nicolas Brulez
+
The Miner botnet: Bitcoin mining goes peer-to-peer
+
Tillman Werner
+
The MiniDuke mystery: PDF 0-day government spy assembler 0x29A micro backdoor
+
GReAT
+
The Mirage campaign
+
Silas Cutler
+
The Pobelka botnet - a command and control case study
+
Rickey Gevers
+
The Sality botnet
+
Nicolas Falliere
+
The Target breach by the numbers
+
Brian Krebs
+
The Waledac protocol: the how and why
+
Chris Nunnery
+
,
Brent ByungHoon Kang
+
,
Greg Sinclair
+
The ZeroAccess botnet revealed
+
Aditya Balapure
+
The ZeroAccess botnet: mining and fraud for massive financial gain
+
James Wyke
+
The ZeroAccess rootkit
+
James Wyke
+
The anatomy of a botnet
+
ASERT
+
The case for in-the-lab botnet experimentation: creating and taking down a 3000-node botnet
+
Joan Calvet
+
,
Carlton R. Davis
+
,
José M. Fernandez
+
,
…
The case of TDL3
+
Ace Portuguez
+
The evolution of TDL: conquering x64
+
Aleksandr Matrosov
+
,
Eugene Rodionov
+
The evolution of webinjects
+
Jean-Ian Boutin
+
The first trojan in history to steal Linux and Mac OS X passwords
+
Dr. Web
+
The good , the bad and the unknown online scanners
+
Pedro Bueno
+
The growing threat to business banking online
+
Brian Krebs
+
The life cycle of web server botnet recruitment
+
Ryan Barnett
+
The lifecycle of peer-to-peer (Gameover) ZeuS
+
Brett Stone-Gross
+
The most sophisticated Android trojan
+
Roman Unuchek
+
The mystery of Duqu framework solved
+
Igor Soumenkov
+
The mystery of Duqu: part five
+
Igor Soumenkov
+
The mystery of Duqu: part one
+
Alexander Gostev
+
The mystery of Duqu: part six (the command and control servers)
+
Vitaly Kamluk
+
The mystery of Duqu: part ten
+
Alexander Gostev
+
The mystery of Duqu: part three
+
Alexander Gostev
+
The mystery of Duqu: part two
+
Alexander Gostev
+
The mystery of the Duqu framework
+
Igor Soumenkov
+
The new era of botnets
+
Zheng Bu
+
,
Pedro Bueno
+
,
Rahul Kashyap
+
,
…
The real face of Koobface: the largest web 2.0 botnet explained
+
Jonell Baltazar
+
,
Joey Costoya
+
,
Ryan Flores
+
The resurrection of RedKit
+
Darryl
+
The rise of TOR-based botnets
+
Aleksandr Matrosov
+
The tigger trojan: icky, sticky stuff
+
Brian Krebs
+
The underground economy of spam: a botmaster's perspective of coordinating large-scale spam campaigns
+
Brett Stone-Gross
+
,
Gianluca Stringhini
+
,
Thorsten Holz
+
,
…
The where and why of Hlux
+
Sergey Golovanov
+
The world's biggest botnets
+
Kelly Jackson Higgins
+
The ‘Madi’ infostealers - a detailed analysis
+
Nicolas Brulez
+
The ‘advertising’ botnet
+
Maria Garnaeva
+
,
Alexei Kadiev
+
The “Hikit” rootkit: advanced and persistent attack techniques (part 1)
+
Christopher Glyer
+
,
Ryan Kazanciyan
+
The “Hikit” rootkit: advanced and persistent attack techniques (part 2)
+
Christopher Glyer
+
,
Ryan Kazanciyan
+
Threat spotlight: Angler lurking in the domain shadows
+
Joel Esler
+
,
Nick Biasini
+
Three month FrameworkPOS malware campaign nabs ~43,000 credit cards from point of sale systems
+
Luis Mendieta
+
Tilon-son of Silon
+
Amit Klein
+
Tilon/SpyEye2 intelligence report
+
Fox-IT
+
TinyNuke may be a ticking time bomb
+
Douglas McKee
+
Tis the season for shipping and phishing
+
Andrey Kostin
+
Top 50 bad hosts & networks 2011 Q4
+
Jart Armin
+
,
Steve Burn
+
,
Greg Feezel
+
,
…
Top spam botnets exposed
+
Joe Stewart
+
Torpig - Back to the future or how the most sophisticated trojan in 2008 reinvents itself
+
Andreas Baumhof
+
TorrentLocker ransomware uses email authentication to refine spam runs
+
Jon Oliver
+
Tracking down the author of the PlugX RAT
+
Jaime Blasco
+
Traffic direction systems as malware distribution tools
+
Maxim Goncharov
+
Travnet botnet steals huge amount of sensitive data
+
Umesh Wanve
+
Travnet trojan could be part of APT campaign
+
Vikas Taneja
+
TreasureHunt: a custom POS malware tool
+
Nart Villeneuve
+
Trend Micro discovers MalumPoS; malware targeting hotels and other US industries
+
Jay Yaneza
+
Trojan ChePro, the CPL storm
+
Fabio Assolini
+
Trojan Nap aka Kelihos/Hlux - Feb. 2013 status update
+
Mila Parkour
+
Trojan downloaders on the rise: don’t let Locky or TeslaCrypt ruin your day
+
Josep Albors
+
Trojan horse using sender policy framework
+
Takashi Katsuki
+
Trojan moves its configuration to Twitter, LinkedIn, MSDN and Baidu
+
Snorre Fagerland
+
Trojan on the loose: an in-depth analysis of police trojan
+
Feike Hacquebord
+
,
David Sancho
+
Trojan.Prinimalka: bits and pieces
+
Dennis Schwarz
+
Trojan.Ransomgerpo criminal arrested
+
Symantec Security Response
+
Trojan.Taidoor takes aim at policy think tanks
+
Stephen Doherty
+
,
Piotr Krysiu
+
Trojan.Tatanarg.B careful!
+
Stephen Doherty
+
Trojan.Whitewell: what’s your (bot) Facebook status today?
+
Andrea Lelli
+
Trojan.ZeroAccess infection analysis
+
Sean Hittel
+
,
Rong Zhou
+
Trusteer warns of new two headed trojan attack against online banks
+
Press release
+
Twitter + Pastebin = malware update
+
Patrick Fitzgerald
+
U
Un WOMBAT pour évaluer la cybercriminalité
+
Corrado Leita
+
,
Marc Dacier
+
,
V.H. Pham
+
,
…
Under the hood of the cyber attack on U.S. banks
+
Ronen Atias
+
Unexpected reboot: Necurs
+
Tim Liu
+
Unveiling an Indian cyberattack infrastructure - a special report
+
Snorre Fagerland
+
,
Morten Kråkvik
+
,
Jonathan Camp
+
,
…
Unveiling the network criminal infrastructure of TDSS/TDL4 - DGAv14: a case study on a new TDSS/TDL4 variant
+
Manos Antonakakis
+
,
Jeremy Demar
+
,
David Dagon
+
,
…
Upas Kit (aka Rombrast) integrates webinjects
+
Kafeine
+
Upatre, Dyre used in Univ. of Florida attack
+
Teri Robinson
+
Update to Citadel : 1.3.5.1 Rain Edition.
+
Kafeine
+
Update to Citadel : v.1.3.4.5
+
Kafeine
+
Updated Sundown Exploit Kit Uses Steganography
+
Brooks Li
+
,
Joseph C. Chen
+
Urausy has big plan for Europe - Targeting 3 new countries among which Norway !
+
Kafeine
+
Urausy improving its localization - A (the\?) Gaelic Ransomware with Interpol impersonation as default landing
+
Kafeine
+
Urausy ransomware - July 2013 design refresh - "Summer 2013 collection"
+
Kafeine
+
Urausy: Colorfull design refresh (+HR) & EC3 Logo
+
Kafeine
+
Uroburos: the snake rootkit
+
Deresz
+
,
Tecamac
+
Using libemu to create malware flow graph
+
Muhammad Najmi Ahmad Zabidi
+
V
VOlk-botnet takes over Latin America
+
Eduard Kovacs
+
Vawtrak gains momentum and expands targets
+
Don Jackson
+
Versatile and infectious: Win64/Expiro is a cross-platform file infector
+
Artem I. Baranov
+
VinSelf - A new backdoor in town
+
Atif Mushtaq
+
ViperRAT: The mobile APT targeting the Israeli Defense Force that should be on your radar
+
Michael Flossman
+
Virus Gendarmerie : variante Office Centrale de Luttre contre la criminalité – controle informationnel
+
Malekal Morte
+
Virus scanners for virus authors
+
Brian Krebs
+
Virus scanners for virus authors, part II
+
Brian Krebs
+
Virut malware fuels Waledac botnet resurgence
+
Danielle Walker
+
W
W32.Changeup: how the worm was created
+
Masaki Suenaga
+
W32.Duqu, the precursor to the next Stuxnet
+
Collectif
+
W32.Qakbot in detail
+
Nicolas Falliere
+
W32.Stuxnet dossier
+
Nicolas Falliere
+
,
Liam O Murchu
+
,
Eric Chien
+
W32.Tinba (Tinybanker) The turkish incident
+
Peter Kruse
+
W32.Xpaj.B: making easy money from complex code
+
Andrea Lelli
+
,
Sean Kiernan
+
,
Piotr Krysiuk
+
,
…
Waledac Botnet - Deployment and Communication Analysis
+
Kyle Yang
+
,
Derek Manky
+
Waledac gets cozy with Virut
+
Denis Carmody
+
Walking through Win32/Jabberbot.A instant messaging C&C
+
Alexis Dorais-Joncas
+
Watch out for CoreBot, new stealer in the wild
+
Limor Kessem
+
,
Martin Korman
+
Weelsof use SSL C&C
+
Xylitol
+
What was that Wiper thing?
+
GReAT
+
Where Are They Today? Cybercrime Trojans That No One Misses: Shifu Malware
+
Limor Kessem
+
Who's behind the Koobface botnet? - An OSINT analysis
+
Dancho Danchev
+
Who's behind the world's largest spam botnet?
+
Brian Krebs
+
Why forums? An empirical analysis into the facilitating factors of carding forums
+
Michael Yip
+
,
Nigel Shadbolt
+
,
Craig Webber
+
Win32/64:Napolar: New trojan shines on the cyber crime-scene
+
Peter Kálnai
+
Win32/Gataka - or should we say Zutick?
+
Jean-Ian Boutin
+
Win32/Gataka banking Trojan - Detailed analysis
+
Jean-Ian Boutin
+
Win32/Gataka: a banking Trojan ready to take off
+
Jean-Ian Boutin
+
Win32/Sality newest component: a router’s primary DNS changer named Win32/RBrute
+
Benjamin Vanheuverzwijn
+
Win32/Spy.Ranbyus modifying Java code in RBS Ukraine systems
+
Aleksandr Matrosov
+
Win32/Virlock: First Self-Reproducing Ransomware is also a Shape Shifter
+
Robert Lipovsky
+
Win32/Vundo
+
Jireh Sanico
+
,
Jaime Wong
+
Winlock affiliate
+
Xylitol
+
Worm:VBS/Jenxcus
+
Francis Allan Tan Seng
+
X
XPAJ: reversing a Windows x64 bootkit
+
Vyacheslav Rusakov
+
Xarvester, the new Srizbi?
+
Gavin Neale
+
Xpaj Botnet intercepts up to 87 million searches per year
+
Gavin O Gorman
+
Y
You can’t be invulnerable, but you can be well protected
+
Vyacheslav Zakorzhevsky
+
You dirty RAT! Part 1 – DarkComet
+
Adam Kujawa
+
You dirty RAT! part 2 – BlackShades NET
+
Adam Kujawa
+
Your botnet is my botnet: analysis of a botnet takeover
+
Brett Stone-Gross
+
,
Christopher Kruegel
+
,
Giovanni Vigna
+
,
…
Your files are encrypted with a “Windows 10 Upgrade”
+
TALOS
+
Z
ZACCESS/SIREFEF arrives with new infection technique
+
Manuel Gatbunton
+
ZeroAccess - new steps in evolution
+
Artem I. Baranov
+
ZeroAccess anti-debug uses debugger
+
Joshua Cannell
+
ZeroAccess rootkit launched by signed installers
+
Kevin Beets
+
,
Peter Szor
+
ZeroAccess's way of self-deletion
+
Wayne
+
ZeroAccess: code injection chronicles
+
Aleksandr Matrosov
+
ZeroLocker won't come to your rescue
+
Roel Schouwenberg
+
Zeroing in on malware propagation methods
+
Joe Faulhaber
+
,
David Felstead
+
,
Paul Henry
+
,
…
ZeuS Gameover overview
+
Giuseppe Bonfà
+
ZeuS ransomware feature: win unlock
+
Mikko S.
+
,
Marko
+
ZeuS v2 Malware Analysis - Part II
+
Patrick Olsen
+
ZeuS – P2P+DGA variant – mapping out and understanding the threat
+
CERT Polska Blog
+
ZeuS-P2P monitoring and analysis
+
CERT Polska
+
,
Nask
+
ZeuSbot/Spyeye P2P updated, fortifying the botnet
+
Andrea Lelli
+
Zeus variant Floki bot targets PoS data
+
Tom Spring
+
Zorenium bot not half the threat it claims to be
+
Symantec Security Response
+
Н
Новый сэмпл Pandora DDoS Bot
+
Onthar
+
‘
‘Dexter’ virus targets point-of-sale terminals
+
Vito Pilieci
+
‘Project Blitzkrieg’ promises more aggressive cyberheists against U.S. banks
+
Brian Krebs
+
Navigation menu
Personal tools
Log in
Namespaces
Property
Discussion
Variants
Views
Read
View source
View history
More
Search
Navigation
Main page
Recent changes
Random page
Help about MediaWiki
Tools
What links here
Related changes
Upload file
Special pages
Printable version
Permanent link
Page information
Browse properties