Property:Editor
From Botnets.fr
Jump to navigation
Jump to search
This is a property of type
Page
. Default form:
Editor
.
Usage
715
previous 500
20
50
100
250
500
next 500
Filter
<p>The <a target="_blank" rel="nofollow noreferrer noopener" class="external text" href="https://www.semantic-mediawiki.org/wiki/Help:Property_page/Filter">search filter</a> allows the inclusion of <a target="_blank" rel="nofollow noreferrer noopener" class="external text" href="https://www.semantic-mediawiki.org/wiki/Help:Query_expressions">query expressions</a> such as <code>~</code> or <code>!</code>. The selected <a target="_blank" rel="nofollow noreferrer noopener" class="external text" href="https://www.semantic-mediawiki.org/wiki/Query_engine">query engine</a> might also support case insensitive matching or other short expressions like:</p><ul><li><code>in:</code> result should include the term, e.g. '<code>in:Foo</code>'</li></ul><ul><li><code>not:</code> result should to not include the term, e.g. '<code>not:Bar</code>'</li></ul>
Showing 500 pages using this property.
E
Esthost taken down - Biggest cybercriminal takedown in history
+
Trend Micro
+
Etude sur le fonctionnement du Trojan.Matsnu.1 codant les données des utilisateurs
+
Dr.Web
+
Evolution of Win32Carberp: going deeper
+
ESET
+
Exploring the market for stolen passwords
+
Brian Krebs
+
F
FAQ on Kelihos.B/Hlux.B sinkholing
+
The Honeynet Project
+
FBI shuts down Coreflood botnet, zombies transmitting financial data
+
Ziff Davis Enterprise
+
Fake FBI Ransomware analysis
+
AVG
+
Fast look at Sundown EK
+
Malware don't need cofee
+
Feodo - a new botnet on the rise
+
FireEye
+
Festi botnet analysis & investigation
+
ESET
+
FighterPOS: a new one-man PoS malware campaign
+
Trend Micro
+
File infector Expiro hits US, steals FTP credentials
+
Trend Micro
+
First step in cross-platform Trojan bankers from Brazil done
+
Kaspersky Securelist
+
First widespread virus cross-infection
+
Symantec
+
Five charged in largest hacking scheme ever prosecuted in US
+
SecurityWeek
+
Flame, Duqu and Stuxnet: in-depth code analysis of mssecmgr.ocx
+
ESET
+
Flame: replication via Windows Update MITM proxy
+
Kaspersky lab
+
Flamer analysis: framework reconstruction
+
ESET
+
Flamer: highly sophisticated and discreet threat targets the Middle East
+
Symantec
+
Flamer: urgent suicide
+
Symantec
+
Flashfake Mac OS X botnet confirmed
+
Kaspersky lab
+
Fortiguard: Android/Stiniter.A!tr
+
Fortinet
+
From Georgia, with love Win32/Georbot
+
ESET
+
Full analysis of Flame's Command & Control servers
+
Kaspersky lab
+
Full analysis of Flame's command & control servers
+
Kaspersky lab
+
G
Gamarue dropping Lethic bot
+
Zscaler
+
GandCrab ransomware distributed by RIG and GrandSoft exploit kits
+
Malwarebytes
+
Gangstaservice Winlock Affiliate
+
Xylibox
+
Gauss: Nation-state cyber-surveillance meets banking Trojan
+
Kaspersky lab
+
Gauss: abnormal distribution
+
Kaspersky lab
+
Get gamed and rue the day...
+
Microsoft
+
GingerMaster Android Malware Utilizing A Root Exploit
+
CS State University
+
Going solo: self-propagating ZBOT malware spotted
+
Trend Micro
+
Google Groups trojan
+
Symantec
+
Got malware? Rent an exploit service
+
Damballa
+
Gumblar Google-poisoning attack morphs
+
The Register
+
Guys behind Gauss and Flame are the same
+
FireEye
+
H
HARMUR: storing and analyzing historic data on malicious domains
+
ACM
+
HTran and the Advanced Persistent Threat
+
DELL SecureWorks
+
Hackers are increasingly targeting IoT Devices with Mirai DDoS Malware
+
HackRead
+
Hammertoss: stealthy tactics define a Russian cyber threat group
+
FireEye
+
Harnig botnet: a retreating army
+
FireEye
+
Harnig is back
+
FireEye
+
Harvesting data on the Xarvester botmaster
+
Brian Krebs
+
Have we seen the end of the ZeroAccess botnet?
+
Sophos Labs
+
Hello Neutrino ! (just one more Exploit Kit)
+
Kafeine
+
HerpesNet botnet 1.7
+
Toolzware
+
Hesperbot – A new, advanced banking trojan in the wild
+
ESET
+
Hiding in plain sight: the FAKEM remote access trojan
+
Trend Micro
+
Hiloti: the (bot)master of disguise
+
Fortinet
+
Hodprot: hot to bot
+
ESET
+
How to steal a Botnet and what can happen when you do
+
Google
+
Hébergeurs malhonnêtes : nouvelle fermeture (3FN)
+
Criminalités numériques
+
I
IRC bot for Android
+
Kaspersky lab
+
IcoScript: using webmail to control malware
+
Virus Bulletin
+
Illuminating the Etumbot APT backdoor
+
Arbor Networks
+
Industrial espionage and targeted attacks: understanding the characteristics of an escalating threat
+
RAID 2012
+
Infamous Skynet botnet author allegedly arrested
+
MalwareTech
+
Inside Carberp botnet
+
Malware Intelligence
+
Inside Impact exploit kit
+
Kafeine
+
Inside Pony 1.7 / Fareit C&C - Botnet Control Panel
+
Malware don't need cofee
+
Inside Upas Kit (1.0.1.1) aka Rombrast C&C - Botnet Control Panel
+
Blogspot
+
Inside an APT campaign with multiple targets in India and Japan
+
Trend Micro
+
Inside the Grum botnet
+
Brian Krebs
+
Inside the world of the Citadel trojan
+
McAfee
+
Insights into Win32/Bradop
+
Microsoft
+
Interconnection of Gauss with Stuxnet, Duqu & Flame
+
ESET
+
International cyber ring that infected millions of computers dismantled
+
FBI
+
It’s 2012 and Armageddon has arrived
+
Arbor SERT
+
It’s not the end of the world: DarkComet misses by a mile
+
Arbor Networks
+
J
Java Runtime Environment 1.7 Zero-Day Exploit Delivers Backdoor
+
Trend Labs
+
Java Zero-Days and the Blackhole Exploit Kit
+
Trend Micro
+
Joint strike force against Dorifel
+
SurfRight
+
K
Kaptoxa point-of-sale compromise
+
ISight Partners
+
Karagny.L unpack
+
Malware.lu
+
Kaspersky Lab et Seculert annoncent la récente découverte de « Madi », une nouvelle attaque de cyberespionnage au Moyen‑Orient
+
Global Security Mag
+
Kaspersky security bulletin 2015. Overall statistics for 2015
+
Kaspersky Securelist
+
Kelihos back in town using Fast Flux
+
Abuse.ch
+
Kelihos botnet appears again with new variant
+
Secure Connexion
+
Kelihos botnet trying to expand by harnessing Russian national sentiments
+
Websense
+
Kelihos is dead. Long live Kelihos
+
Damballa
+
Kelihos is dead… No wait… Long live Kelihos! Again!
+
Trustwave
+
Kelihos/Hlux botnet returns with new techniques
+
Kaspersky lab
+
Kelihos: not alien resurrection, more attack of the clones
+
ESET
+
King of spam:Festi botnet analysis
+
ESET
+
Know your enemy: tracking botnets
+
Honeynet projects
+
Koobface botnet master KrotReal back in business, distributes ransomware and promotes BHSEO service/product
+
Dancho Danchev
+
Koobface, un écosystème cybercriminel ou le conte des Mille et une nuits ?
+
Eric Freyssinet
+
Kore exploit kit
+
Kahu Security
+
Kraken botnet infiltration
+
Tipping Point
+
L
Large-scale analysis of malware downloaders
+
DIMVA
+
Latest Kelihos botnet shut down live at RSA Conference 2013
+
Kaspersky lab
+
Latest SpyEye botnet active and cheaper
+
McAfee
+
Latin American banks under fire from the Mexican VOlk-botnet
+
Kaspersky lab
+
Learning stateful models for network honeypots
+
ACM
+
Legal implications of countering botnets
+
NATO Cooperative Cyber Defence Centre of Excellence
+
Leouncia - Yet another backdoor
+
FireEye
+
Leouncia - Yet another backdoor - Part 2
+
FireEye
+
Library file in certain Android apps connects to C&C servers
+
Trend Micro
+
Lifting the lid on the Redkit exploit kit (Part 1)
+
Sophos Labs
+
Lights Out: Dragonfly is on the move
+
CyActive
+
Linux/Cdorked.A: New Apache backdoor being used in the wild to serve Blackhole
+
ESET
+
Locky Ransomware switches to the Lukitus extension for Encrypted Files
+
Bleeping Computer
+
LogPOS - new point of sale malware using mailslots
+
Morphick
+
Long life to Kelihos!
+
Websense
+
Look what I found: it's a Pony!
+
Trustwave
+
M
MDK: the largest mobile botnet in China
+
Symantec
+
MMD-0056-2016 - Linux/Mirai, how an old ELF malcode is recycled
+
Malware Must Die
+
MP-DDoser: A rapidly improving DDoS threat
+
Arbor Sert
+
MP-DDoser:Monitoring a rapidly improving DDoS threat
+
Arbor Sert
+
MSIE 0-day exploit CVE-2014-0322 - Possibly targeting French aerospace association
+
Websense
+
MSRT April 2012: Win32/Claretore
+
Microsoft
+
MSRT April 2014 – Ramdo
+
Microsoft
+
MSRT June '12 - cleanup on aisle one
+
Microsoft
+
MSRT March 2012: breaking bad
+
Microsoft
+
MSRT November '12 - Weelsof around the world
+
Microsoft
+
MSRT September '12 - Medfos, hijacking your daily search
+
Microsoft
+
MSRT march: three hioles in one
+
Microsoft
+
Maazben: best of both worlds
+
M86 Security labs
+
Mac BackDoor.Wirenet.1 config extractor
+
Malware.lu
+
Mac Flashback exploiting unpatched Java vulnerability
+
F-Secure
+
Mac spyware found at Oslo Freedom Forum
+
F-Secure
+
Madi is back - New Tricks and a new Command&Control server
+
Kaspersky lab
+
Mahdi malware finds 150 new targets including U.S. and Germany, gets more evasive
+
Wired Business Media
+
Major shift in strategy for ZeroAccess rootkit malware, as it shifts to user-mode
+
Sophos Labs
+
Malicious Apache module injects Iframes
+
Unmask Parasites
+
Malicious Apache module used for content injection: Linux/Chapro.A
+
ESET
+
Malware 2 - from infection to persistence
+
Context
+
Malware Memory Analysis - Volatility
+
Basement PC Tech
+
Malware Uses Google Go Language
+
Symantec
+
Malware analysis Rannoh/Matsnu
+
Malware.lu
+
Malware analysis of the Lurk downloader
+
DELL SecureWorks
+
Malware analysis tutorial 32: exploration of botnet client
+
Dr. Xiang Fu
+
Malware attacking POS systems
+
Hexacorn
+
Malware discovered developed with Google's "Go" programming language
+
Wired Business Media
+
Malware evolving to defeat anti-DDoS services like CloudFlare?
+
ESET
+
Malware for everyone - Aldi Bot at a discount price
+
Heise Media
+
Malware hunting with the Sysinternals tools
+
MSDN
+
Malware pandemics
+
Office of Naval Research
+
Malware targeting Windows 8 uses Google Docs
+
Symantec
+
Mariposa botnet 'mastermind' jailed in Slovenia
+
BBC
+
Massive Drop in number of active Zeus C&C servers
+
Abuse.ch
+
Massive search fraud botnet seized by Microsoft and Symantec
+
Condé Nast
+
Mastermind behind Gozi bank malware charged along with two others
+
Condé Nast
+
McAfee Labs threat advisory : W32.Pinkslipbot
+
McAfee
+
Measuring and detecting Fast-Flux service networks
+
University of Mannheim & Fraunhofer FIRST
+
Measuring and detecting malware downloads in live network traffic
+
ESORICS
+
Measuring botnet populations
+
Arbor Sert
+
Meet "Red Dot exploit toolkit"
+
Malware don't need cofee
+
Meet CritXPack (Previously Vintage Pack)
+
Kafeine
+
Meet ProPack Exploit Pack - yes that's a lot of pack
+
Blogspot
+
Members of the largest criminal group engaged in online banking fraud are detained
+
Group-IB
+
Mexican Twitter-controlled botnet unpicked
+
The Register
+
Microsoft and Symantec take down Bamital botnet that hijacks online searches
+
Microsoft
+
Microsoft and financial services industry leaders target cybercriminal operations from ZeuS botnets
+
Microsoft
+
Microsoft disrupts the emerging Nitol botnet being spread through an unsecure supply chain
+
Microsoft
+
Microsoft neutralizes Kelihos botnet, names defendant in case
+
Microsoft
+
Microsoft partners with Interpol, industry to disrupt global malware attack affecting more than 770,000 PCs in past six months
+
Microsoft
+
Microsoft security updates January 2016
+
Kaspersky Securelist
+
Miniduke
+
CrySyS Lab
+
MoVP 1.3 Desktops, heaps, and ransomware
+
Volatility labs
+
Mocbot spam analysis
+
DELL SecureWorks
+
Monkif botnet hides commands in JPEGs
+
McAfee Labs
+
More Flame/Skywiper CNC behavior uncovered
+
FireEye
+
More details of the Dorifel servers
+
Rickey Gevers
+
Morto worm sets a (DNS) record
+
Symantec
+
Mpack installs ultra-invisible trojan
+
International Data Group
+
Multitenancy Botnets thwart threat analysis
+
Open-Source Security Tools
+
Mysterious Avatar rootkit with API, SDK, and Yahoo Groups for C&C communication
+
ESET
+
N
NASK shuts down dangerous Virut botnet domains
+
CERT Polska
+
NGRBot spreads via chat
+
McAfee
+
Necurs Quick Analysis
+
Malware.lu
+
Neosploit gets Java 0-Day
+
Kahu Security
+
Nepalese government websites compromised to serve Zegost RAT
+
Websense
+
NetTraveler APT gets a makeover for 10th birthday
+
Kaspersky lab
+
NetTraveler is back: the 'Red Star' APT returns with new tricks
+
Kaspersky lab
+
New Apple Mac trojan called OSX/Crisis discovered
+
Intego
+
New Chinese exploit pack
+
Kahu security blog
+
New CryptoLocker spreads via removable drives
+
Trend Micro
+
New Duqu sample found in the wild
+
Symantec
+
New GamaPoS malware piggybacks on Andromeda botnet; spreads in 13 US states
+
Trend Micro
+
New IE Zero-Day used in targeted attacks
+
Symantec
+
New IceIX (ZeuS variant) changes its encryption method (again)
+
TrustDefender Labs
+
New Mac malware discovered on attendee computer at anti-surveillance workshop
+
Kaspersky lab
+
New Mahdi updates, new C2 server
+
Seculert
+
New POS malware emerges - Punkey
+
Trustwave
+
New PoS malware “Backoff” targets US
+
Trend Micro
+
New RATs emerge from leaked Njw0rm source code
+
Trend Labs
+
New Thor botnet nearly ready to be sold, price $8,000
+
SPAMfighter
+
New Xtreme RAT attacks US, Israel, and other foreign governments
+
Trend Micro
+
New crimeware attacks LatAm bank users
+
Kaspersky lab
+
New crypto-ransomware JIGSAW plays nasty games
+
TrendLabs Security Intelligence Blog
+
New crypto-ransomware emerge in the wild
+
Trend Micro
+
New point-of-sale malware distributed by Andromeda botnet
+
CIO IDG News
+
New ransomware plays its victims an audio file, over and over and over…
+
Trend Micro
+
New trojan found: Admin.HLP leaks organizations data
+
ERT Threat Alert
+
New virus SMSZombie.A discovered by TrustGo Security Labs
+
TrustGo
+
NewPosThings has new PoS things
+
TrendLabs Security Intelligence Blog
+
Newly detected Crisis virus infects Windows, Macs and virtual machines
+
Ziff Davis
+
Newly launched ‘HTTP-based botnet setup as a service’ empowers novice cybercriminals with bulletproof hosting capabilities
+
Webroot
+
Ngrbot steals information and mine Bitcoins
+
SonicWALL
+
NitlovePOS: another new POS malware
+
FireEye
+
Nitol DDoS botnet discovered in China
+
Reed Exhibitions
+
NjRAT & H-Worm variant infections continue to rise
+
Zscaler
+
Not just a one-trick PonyDOS
+
Arbor SERT
+
Now you Z-(eus) it, now you don’t: ZeuS bots silently upgraded to Citadel
+
RSA
+
Nymaim - obfuscation chronicles
+
ESET
+
O
OSX Kitmos analysis
+
Steeve Barbeau
+
OSX.Iservice technical details
+
Symantec
+
OSX.iService its not going to iWork for you
+
Symantec
+
OSX/Crisis has been used as part of a targeted attack
+
Intego
+
OSX/Flashback - The first malware to infect hundreds of thousands of Apple Mac
+
ESET
+
Obama order sped up wave of cyberattacks against Iran
+
The New York Times
+
Olmasco bootkit: next circle of TDL4 evolution (or not)
+
Eset
+
On botnets that use DNS for command and control
+
Institute for Internet Security University of Applied Sciences Gelsenkirchen Gelsenkirchen, Germany
+
One Sinowal trojan + one gang = hundreds of thousands of compromised accountS
+
RSA
+
One bot to rule them all
+
Panda Security
+
One-man PoS malware operation captures 22,000 credit card details in Brazil
+
TrendLabs Security Intelligence Blog
+
Operation Bot Roast II
+
FBI
+
Operation SnowMan: DeputyDog actor compromises US veterans of foreign wars website
+
FireEye
+
Operation Socialist The Inside Story Of How British Spies Hacked Belgium’s Largest Telco
+
The Intercept
+
OphionLocker: Joining in the Ransomware Race
+
F-Secure
+
Over 9 million PCs infected - ZeroAccess botnet uncovered
+
Sophos Labs
+
Overcoming reputation and proof-of-work systems in botnets
+
IEEE
+
Overview: inside the ZeuS trojan’s source code
+
The Tech Herald
+
Owning Kraken zombies
+
Tipping Point
+
P
PETYA crypto-ransomware overwrites MBR to lock users out of their computers
+
TrendLabs Security Intelligence Blog
+
Panda Security uncovers bot-killing malware
+
Wired Business Media
+
Panel Gendarmerie
+
Malekal
+
Panel Supern0va et virus gendarmerie
+
Malekal Morte
+
Panel Virus Gendarmerie : Ratio 0.36%
+
Malekal
+
Part virus, part botnet, spreading fast: Ramnit moves past Facebook passwords
+
Arstechnica
+
Peer-to-peer botnets: overview and case study
+
Usenix
+
PeerRush: mining for unwanted P2P traffic
+
Conference on Detection of Intrusions and Malware & Vulnerability Assessment
+
Petya ransomware skips the files and encrypts your hard drive instead
+
Bleeping Computer
+
Pitou, The “silent” resurrection of the PITOU notorious Srizbi kernel spambot
+
F-Secure
+
Playing cops & robbers with banks & browsers
+
Symantec
+
PlugX malware: A good hacker is an apologetic hacker
+
Kaspersky Securelist
+
PlugX: new tool for a not so new campaign
+
Trend Micro
+
PlugX: some uncovered points
+
Cassidian Cybersecurity
+
Poison Ivy 2.3.0 Documentation
+
PoisonIvy
+
Poison Ivy: assessing damage and extracting intelligence
+
FireEye
+
PoisonIvy adapts to communicate through authentication proxies
+
JPCERT-CC
+
Poisoned search results: How hackers have automated search engine poisoning attacks to distribute malware
+
Sophos
+
PokerAgent botnet stealing over 16,000 Facebook credentials
+
ESET
+
Police Trojan crosses the Atlantic, now targets USA and Canada
+
TrendMicro
+
Post-mortem of a zombie: Conficker cleanup after six years
+
24th USENIX Security Symposium
+
Pramro and Sality - two PEs in a pod
+
Microsoft
+
Proactive detection of network security incidents
+
Enisa
+
Proactive detection of security incidents II - Honeypots
+
Enisa
+
Proactive policy measures by Internet service providers against Botnets
+
OECD
+
Probing the Gozi-Prinimalka campaign
+
Trend Micro
+
Pushdo botnet gets DGA update, over 6,000 machines host new variant
+
Haymarket Media, Inc
+
Q
Qadars: un nouveau malware bancaire avec un composant mobile
+
LEXSI
+
Quervar – Induc.C reincarnate
+
Eset
+
R
REVETON Ransomware Spreads with Old Tactics, New Infection Method
+
Trend Labs
+
REvil ransomware gang's web sites mysteriously shut down
+
Bleeping Computer
+
RIG exploit kit strikes oil
+
CISCO
+
Ramnit goes social
+
Seculert
+
Ransomware : la sulfureuse hypothèse sur la situation chez Norsk Hydro
+
ZDNet
+
Ransomware Fake Microsoft Security Essentials
+
Malekal Morte
+
Ransomware and Silence Locker control panel
+
Symantec
+
Ransomware crimeware kits
+
Symantec
+
Ransomware gets professional, targeting Switzerland, Germany and Austria
+
Abuse.ch
+
Ransomware or Wiper? LockerGoga Straddles the Line
+
Cisco Talos Intelligence
+
Ransomware report: the rise of BandarChor
+
F-Secure
+
Ransomware « Trojan.Casier » Panel
+
Malekal
+
Ransomware ‘Holds Up’ victims
+
McAfee
+
Ransomware: playing on your fears
+
Microsoft
+
Relentless Zbot and anti-emulations
+
Symantec
+
Research Win32/Slenfbot
+
Microsoft
+
Reversing Andromeda-Gamarue botnet
+
Garage 4 Hackers
+
Reversing the wrath of Khan
+
Arbor SERT
+
Reveton.A
+
Microsoft
+
Richard Clarke on who was behind the Stuxnet attack
+
Smithsonian
+
Rmnet.12 created a million Windows computer botnet
+
DrWeb
+
RootSmart Android malware
+
InfoSec Institute
+
RootSmart malware utilizes GingerBreak root exploit
+
CS State University
+
Rovnix Reloaded: new step of evolution
+
ESET
+
Rovnix bootkit framework updated
+
ESET
+
Rovnix.D: the code injection story
+
ESET
+
Russian service online to check the detection of malware
+
Malware Intelligence
+
Réflexions pour un plan d'action contre les botnets
+
SSTIC
+
S
SDBot IRC botnet continues to make waves
+
Trend Micro
+
SIM-ple: mobile handsets are weak link in latest online banking fraud scheme
+
Trusteer
+
SIRv12
+
Microsoft
+
SIRv12: the obstinacy of Conficker
+
Microsoft Malware Protection Centre
+
SKyWIper: A complex malware for targeted attacks
+
CrySyS Lab
+
SamSam Ransomware Evolves Its Tactics Towards Targeting Whole Companies
+
Threatpost
+
SamSam ransomware designed to inundate targeted networks with thousands of copies of itself
+
SC Magazine
+
Saudi Aramco hit by computer virus
+
Guardian News and Media Limited
+
Say hello to Tinba: world’s smallest trojan-banker
+
CSIS
+
Scareware locks down computer due to child porn and terrorism
+
Abuse.ch
+
Secrets of the Comfoo masters
+
DELL SecureWorks
+
Security Response Android.Counterclank
+
Symantec
+
Security alert: SpamSoldier
+
Lookout
+
Security alert: new Android malware - TigerBot - identified in alternative markets
+
NQ Mobile
+
Security alert: new TGLoader Android malware utilizes the exploid root exploit
+
NC State University
+
Security alert: new variants of Legacy Native (LeNa) identified
+
Lookout
+
Security experts detected new Twitter-controlled botnet
+
Spamfighter
+
Shamoon the Wiper in details
+
Kaspersky lab
+
Shamoon the Wiper: further details (Part II)
+
Kaspersky lab
+
Shamoon the wiper - copycats at work
+
Kaspersky lab
+
Shedding light on the NeoSploit Exploit Kit
+
M86SecurityLabs
+
Shylock financial malware back 'with a vengeance'
+
CSO Online
+
Sinowal analysis (Windows 7, 32-bit)
+
Evild3ad.com
+
Sinowal: MBR rootkit never dies! (and it always brings some new clever features)
+
ITsec
+
Sinowal: the evolution of MBR rootkit continues
+
PrevX Labs
+
Skunkx DDoS bot analysis
+
Arbor Networks
+
Skynet, a Tor-powered botnet straight from Reddit
+
Rapid7
+
Smartcard vulnerabilities in modern banking malware
+
ESET
+
Social networks – A bonanza for cybercriminals
+
Kaspersky Securelist
+
Sony PlayStation's site SQL injected, redirecting to rogue security software
+
Zdnet
+
Sony/Destover: mystery North Korean actor’s destructive and past network activity
+
Kaspersky Securelist
+
Sopelka Botnet: three banking trojans and one banking panel
+
S21sec
+
Source Code for IoT Botnet ‘Mirai’ Released
+
Krebs on Security
+
Spam botnets: The fall of Grum and the rise of Festi
+
Spamhaus
+
Spambot evolution 2011
+
DELL SecureWorks
+
Spread of Darkness...Details on the public release of the Darkness DDoS bot
+
Shadowserver Foundation
+
SpyEye being kicked to the curb by its customers?
+
Damballa
+
Stamp EK (aka SofosFO) now showing "Blackhole 2.0 Like" landing pages
+
Kafeine
+
Stealing money from ATMs with malware
+
CCC 30C3
+
Stealthy peer-to-peer C&C over SMB pipes
+
Strategic Cyber LLC
+
Stealthy router-based botnet worm squirming
+
ZDNet
+
Step-by-step reverse engineering malware: ZeroAccess / Max++ / Smiscer crimeware rootkit
+
Infosec Institute
+
Stolen passwords allowed hackers to steal over one billion rubles
+
Duo security
+
Study of malware obfuscation techniques
+
HITBSecConf
+
Survey on network-based botnet detection methods
+
John Wiley & Sons, Ltd.
+
Symantec/Android.Ackposts
+
Symantec
+
Symantec/Android.Maistealer
+
Symantec
+
Symantec/Backdoor.Arcomrat
+
Symantec
+
Symantec/W32.Zorenium
+
Symantec
+
T
TDI - a new element in old TDSS story
+
Artem I. Baranov
+
TDL3 : The rootkit of all evil
+
ESET
+
TDL4 - Top Bot
+
Kaspersky lab
+
TDL4 reloaded: Purple Haze all in my brain
+
ESET
+
TDSS botnet: full disclosure
+
Esage Lab
+
TR-24 analysis - Destory RAT family
+
CIRCL
+
Takeover of Virut domains
+
CERT Polska
+
Taking down botnets: Microsoft and the Rustock botnet
+
Microsoft
+
Tales from Crisis, Chapter 1: The dropper’s box of tricks
+
Osxreverser
+
Tales from Crisis, Chapter 2: Backdoor’s first steps
+
Osxreverser
+
Tales from Crisis, Chapter 3: The Italian rootkit job
+
Osxreverser
+
Tales from Crisis, Chapter 4: a ghost in the network
+
Osxreverser
+
Targeted attacks and Ukraine
+
F-Secure
+
Targeted destructive malware explained: Troj/Mdrop-ELD
+
Sophos Labs
+
Targeted information stealing attacks in South Asia use email, signed binaries
+
ESET
+
Tatanga attack exposes chipTAN weaknesses
+
Trusteer
+
Tatanga: a new banking trojan with MitB functions
+
S21sec
+
Tequila botnet leads to phishing attack
+
Trend Micro
+
The "Red October" campaign - An advanced cyber espionage network targeting diplomatic and government agencies
+
Kaspersky lab
+
The 'Penquin' Turla
+
Kaspersky Securelist
+
The ACCDFISA malware family – Ransomware targeting Windows servers
+
Emsisoft
+
The ACCDFISA malware family – Ransomware targetting Windows servers
+
Emsisoft Lab
+
The Andromeda/Gamarue botnet is on the rise again
+
GData
+
The Coreflood report
+
DELL SecureWorks
+
The Cridex trojan targets 137 financial organizations in one go
+
M86 Security Labs
+
The DGA of Symmi
+
Johannes Bader
+
The Dark Alleys of Madison Avenue: Understanding Malicious Advertisements
+
Internet Measurement Conference
+
The Dorkbot rises
+
Trend Micro
+
The Elderwood project (infographic)
+
Symantec
+
The Epic Turla operation
+
Kaspersky lab
+
The Flame: questions and answers
+
Kaspersky lab
+
The IMDDOS botnet: discovery and analysis
+
Damballa
+
The Madi campaign - Part II
+
Kaspersky lab
+
The Miner botnet: Bitcoin mining goes peer-to-peer
+
Kaspersky Securelist
+
The MiniDuke mystery: PDF 0-day government spy assembler 0x29A micro backdoor
+
Kaspersky lab
+
The Mirage campaign
+
DELL SecureWorks
+
The Pobelka botnet - a command and control case study
+
Digital Investigation
+
The Sality botnet
+
Symantec
+
The Target breach by the numbers
+
Krebs on Security
+
The Waledac protocol: the how and why
+
Malicious and Unwanted Software (MALWARE)
+
The ZeroAccess botnet revealed
+
Infosec Institute
+
The ZeroAccess botnet: mining and fraud for massive financial gain
+
Sophos Labs
+
The ZeroAccess rootkit
+
Sophos
+
The anatomy of a botnet
+
Arbor SERT
+
The case for in-the-lab botnet experimentation: creating and taking down a 3000-node botnet
+
Annual Computer Security Applications Conference
+
The case of TDL3
+
F-Secure
+
The evolution of TDL: conquering x64
+
ESET
+
The evolution of webinjects
+
Virus Bulletin
+
The first trojan in history to steal Linux and Mac OS X passwords
+
Dr.Web
+
The good , the bad and the unknown online scanners
+
ISC
+
The graphic design of "Maktub Locker" ransomware
+
F-Secure
+
The growing threat to business banking online
+
Washington Post
+
The life cycle of web server botnet recruitment
+
Trustwave
+
The lifecycle of peer-to-peer (Gameover) ZeuS
+
DELL SecureWorks
+
The most sophisticated Android trojan
+
Kaspersky lab
+
The mystery of Duqu framework solved
+
Kaspersky lab
+
The mystery of Duqu: part five
+
Kaspersky lab
+
The mystery of Duqu: part one
+
Kaspersky lab
+
The mystery of Duqu: part six (the command and control servers)
+
Kaspersky lab
+
The mystery of Duqu: part ten
+
Kaspersky lab
+
The mystery of Duqu: part three
+
Kaspersky lab
+
The mystery of Duqu: part two
+
Kaspersky lab
+
The mystery of the Duqu framework
+
Kaspersky lab
+
The new era of botnets
+
McAfee Labs
+
The real face of Koobface: the largest web 2.0 botnet explained
+
Trend Micro
+
The resurrection of RedKit
+
Kahu Security
+
The rise of TOR-based botnets
+
ESET
+
The tigger trojan: icky, sticky stuff
+
Washington Post
+
The underground economy of spam: a botmaster's perspective of coordinating large-scale spam campaigns
+
LEET'11 Proceedings of the 4th USENIX conference on Large-scale exploits and emergent threats
+
The where and why of Hlux
+
Kaspersky lab
+
The world's biggest botnets
+
Darkreading
+
The ‘Madi’ infostealers - a detailed analysis
+
Kaspersky lab
+
The ‘advertising’ botnet
+
Kaspersky lab
+
The “Hikit” rootkit: advanced and persistent attack techniques (part 1)
+
Mandiant
+
The “Hikit” rootkit: advanced and persistent attack techniques (part 2)
+
Mandiant
+
Threat spotlight: Angler lurking in the domain shadows
+
CISCO
+
Three month FrameworkPOS malware campaign nabs ~43,000 credit cards from point of sale systems
+
Anomali
+
Tilon-son of Silon
+
Trusteer
+
Tilon/SpyEye2 intelligence report
+
Fox-IT
+
TinyNuke may be a ticking time bomb
+
McAfee
+
Tis the season for shipping and phishing
+
Kaspersky Securelist
+
Top 50 bad hosts & networks 2011 Q4
+
HostExploit
+
Top spam botnets exposed
+
DELL SecureWorks
+
Torpig - Back to the future or how the most sophisticated trojan in 2008 reinvents itself
+
Andreas Baumhof
+
TorrentLocker ransomware uses email authentication to refine spam runs
+
TrendLabs Security Intelligence Blog
+
Tracking down the author of the PlugX RAT
+
Alienvault
+
Traffic direction systems as malware distribution tools
+
Trend Micro
+
Travnet botnet steals huge amount of sensitive data
+
McAfee
+
Travnet trojan could be part of APT campaign
+
McAfee
+
TreasureHunt: a custom POS malware tool
+
FireEye
+
Trend Micro discovers MalumPoS; malware targeting hotels and other US industries
+
Trend Micro
+
Trojan ChePro, the CPL storm
+
Kaspersky Securelist
+
Trojan Nap aka Kelihos/Hlux - Feb. 2013 status update
+
DeepEnd Research
+
Trojan downloaders on the rise: don’t let Locky or TeslaCrypt ruin your day
+
ESET Welivesecurity
+
Trojan horse using sender policy framework
+
Symantec
+
Trojan moves its configuration to Twitter, LinkedIn, MSDN and Baidu
+
Norman
+
Trojan on the loose: an in-depth analysis of police trojan
+
Trend Micro
+
Trojan.Prinimalka: bits and pieces
+
Arbor Networks
+
Trojan.Ransomgerpo criminal arrested
+
Symantec
+
Trojan.Taidoor takes aim at policy think tanks
+
Symantec
+
Trojan.Tatanarg.B careful!
+
Symantec
+
Trojan.Whitewell: what’s your (bot) Facebook status today?
+
Symantec
+
Trojan.ZeroAccess infection analysis
+
Symantec
+
Trusteer warns of new two headed trojan attack against online banks
+
Trusteer
+
Twitter + Pastebin = malware update
+
Symantec
+
U
Un WOMBAT pour évaluer la cybercriminalité
+
SSTIC
+
Under the hood of Carberp: Malware & configuration analysis
+
Trusteer
+
Under the hood of the cyber attack on U.S. banks
+
Incapsula
+
Unexpected reboot: Necurs
+
Microsoft
+
Unveiling an Indian cyberattack infrastructure - a special report
+
Norman
+
Unveiling the network criminal infrastructure of TDSS/TDL4 - DGAv14: a case study on a new TDSS/TDL4 variant
+
Damballa
+
Upas Kit (aka Rombrast) integrates webinjects
+
Blogspot
+
Upatre, Dyre used in Univ. of Florida attack
+
SC Magazine
+
Updated Sundown Exploit Kit Uses Steganography
+
TrendLabs Security Intelligence Blog
+
Urausy improving its localization - A (the\?) Gaelic Ransomware with Interpol impersonation as default landing
+
Blogspot
+
Urausy ransomware - July 2013 design refresh - "Summer 2013 collection"
+
Kafeine
+
Urausy: Colorfull design refresh (+HR) & EC3 Logo
+
Kafeine
+
V
VOlk-botnet takes over Latin America
+
Softpedia
+
Vawtrak gains momentum and expands targets
+
PhishLabs
+
Versatile and infectious: Win64/Expiro is a cross-platform file infector
+
ESET
+
VinSelf - A new backdoor in town
+
FireEye
+
ViperRAT: The mobile APT targeting the Israeli Defense Force that should be on your radar
+
Lookout
+
Virus Gendarmerie : variante Office Centrale de Luttre contre la criminalité – controle informationnel
+
Malekal
+
Virus scanners for virus authors
+
Krebs on Security
+
Virus scanners for virus authors, part II
+
Krebs on Security
+
Virut malware fuels Waledac botnet resurgence
+
Haymarket Media, Inc
+
W
W32.Changeup: how the worm was created
+
Symantec
+
W32.Duqu, the precursor to the next Stuxnet
+
Symantec
+
W32.Flamer: spreading mechanism tricks and exploits
+
Symantec
+
W32.Qakbot in detail
+
Symantec
+
W32.Shadesrat (Blackshades) author arrested
+
Symantec
+
W32.Stuxnet dossier
+
Symantec
+
W32.Tinba (Tinybanker) The turkish incident
+
Trend Micro
+
W32.Xpaj.B: making easy money from complex code
+
Symantec
+
Waledac Botnet - Deployment and Communication Analysis
+
Fortinet
+
Waledac gets cozy with Virut
+
Symantec
+
Walking through Win32/Jabberbot.A instant messaging C&C
+
ESET
+
Watch out for CoreBot, new stealer in the wild
+
Security Intelligence
+
Weelsof use SSL C&C
+
Xylitol
+
What was that Wiper thing?
+
Kaspersky lab
+
What’s the buzz with Bafruz
+
Microsoft
+
Where Are They Today? Cybercrime Trojans That No One Misses: Shifu Malware
+
Security Intelligence
+
Who's behind the world's largest spam botnet?
+
Brian Krebs
+
Why forums? An empirical analysis into the facilitating factors of carding forums
+
WebSci '13 Proceedings of the 5th Annual ACM Web Science Conference
+
Win32/64:Napolar: New trojan shines on the cyber crime-scene
+
Avast
+
Win32/Gataka - or should we say Zutick?
+
ESET
+
Win32/Gataka banking Trojan - Detailed analysis
+
ESET
+
Win32/Gataka: a banking Trojan ready to take off
+
ESET
+
Win32/Sality newest component: a router’s primary DNS changer named Win32/RBrute
+
ESET
+
Win32/Spy.Ranbyus modifying Java code in RBS Ukraine systems
+
ESET
+
Win32/Virlock: First Self-Reproducing Ransomware is also a Shape Shifter
+
ESET Welivesecurity
+
Win32/Vundo
+
Microsoft
+
Winlock affiliate
+
Xylitol
+
Wire Transfer Spam Spreads Upatre
+
Microsoft malware protection centre
+
Worm:VBS/Jenxcus
+
Microsoft
+
X
XPAJ: reversing a Windows x64 bootkit
+
Kaspersky lab
+
Xarvester, the new Srizbi?
+
M86 Security Labs
+
Xpaj Botnet intercepts up to 87 million searches per year
+
Symantec
+
Y
You can’t be invulnerable, but you can be well protected
+
Kaspersky Securelist
+
You dirty RAT! Part 1 – DarkComet
+
Malwarebytes
+
You dirty RAT! part 2 – BlackShades NET
+
Malwarebytes
+
Your botnet is my botnet: analysis of a botnet takeover
+
Department of Computer Science, University of California, Santa Barbara
+
Your files are encrypted with a “Windows 10 Upgrade”
+
CISCO
+
Z
ZACCESS/SIREFEF arrives with new infection technique
+
Trend Micro
+
ZeroAccess - new steps in evolution
+
Artem Baranov
+
ZeroAccess anti-debug uses debugger
+
Malwarebytes
+
ZeroAccess rootkit launched by signed installers
+
McAfee
+
ZeroAccess's way of self-deletion
+
F-Secure
+
Navigation menu
Personal tools
Log in
Namespaces
Property
Discussion
Variants
Views
Read
View source
View history
More
Search
Navigation
Main page
Recent changes
Random page
Help about MediaWiki
Tools
What links here
Related changes
Upload file
Special pages
Printable version
Permanent link
Page information
Browse properties