Click here to download all references as Bib-File.
| 2020-04-13 ⋅ Palo Alto Networks Unit 42 ⋅ APT41 Using New Speculoos Backdoor to Target Organizations Globally Speculoos APT41 |
| 2020-03-03 ⋅ Palo Alto Networks Unit 42 ⋅ Molerats Delivers Spark Backdoor to Government and Telecommunications Organizations Downeks JhoneRAT Molerat Loader Spark |
| 2019-12-09 ⋅ Palo Alto Networks Unit 42 ⋅ TrickBot Campaign Uses Fake Payroll Emails to Conduct Phishing Attacks TrickBot |
| 2019-04-30 ⋅ Palo Alto Networks Unit 42 ⋅ Behind the Scenes with OilRig BONDUPDATER |
| 2019-01-08 ⋅ paloalto Netoworks: Unit42 ⋅ DarkHydrus delivers new Trojan that can use Google Drive for C2 communications RogueRobinNET DarkHydrus |
| 2018-12-12 ⋅ Palo Alto Networks Unit 42 ⋅ Dear Joohn: The Sofacy Group’s Global Campaign APT28 |
| 2018-11-20 ⋅ Palo Alto Networks Unit 42 ⋅ Sofacy Continues Global Attacks and Wheels Out New ‘Cannon’ Trojan APT28 |
| 2018-11-20 ⋅ Palo Alto Networks Unit 42 ⋅ Sofacy Continues Global Attacks and Wheels Out New ‘Cannon’ Trojan Cannon |
| 2018-09-27 ⋅ Palo Alto Networks Unit 42 ⋅ New KONNI Malware attacking Eurasia and Southeast Asia Nokki |
| 2018-07-27 ⋅ Palo Alto Networks Unit 42 ⋅ New Threat Actor Group DarkHydrus Targets Middle East Government RogueRobin DarkHydrus |
| 2018-07-25 ⋅ Palo Alto Networks Unit 42 ⋅ OilRig Targets Technology Service Provider and Government Agency with QUADAGENT OilRig |
| 2018-06-06 ⋅ Palo Alto Networks Unit 42 ⋅ Sofacy Group’s Parallel Attacks Koadic Zebrocy |
| 2018-02-28 ⋅ Palo Alto Networks Unit 42 ⋅ Sofacy Attacks Multiple Government Entities APT28 |
| 2018-02-23 ⋅ Palo Alto Networks Unit 42 ⋅ OopsIE! OilRig Uses ThreeDollars to Deliver New Trojan OopsIE |
| 2018-02-23 ⋅ Palo Alto Networks Unit 42 ⋅ OopsIE! OilRig Uses ThreeDollars to Deliver New Trojan OilRig |
| 2017-10-09 ⋅ Palo Alto Networks Unit 42 ⋅ OilRig Group Steps Up Attacks with New Delivery Documents and New Injector Trojan OilRig |
| 2017-09-26 ⋅ Palo Alto Networks Unit 42 ⋅ Striking Oil: A Closer Look at Adversary Infrastructure RGDoor |
| 2017-09-26 ⋅ Palo Alto Networks Unit 42 ⋅ Striking Oil: A Closer Look at Adversary Infrastructure OilRig |
| 2017-07-31 ⋅ Palo Alto Networks Unit 42 ⋅ TwoFace Webshell: Persistent Access Point for Lateral Movement TwoFace OilRig |
| 2017-07-27 ⋅ Palo Alto Networks Unit 42 ⋅ OilRig Uses ISMDoor Variant; Possibly Linked to Greenbug Threat Group Greenbug |