Click here to download all references as Bib-File.
2023-03-20 ⋅ SecurityIntelligence ⋅ When the Absence of Noise Becomes Signal: Defensive Considerations for Lazarus FudModule FudModule |
2023-03-07 ⋅ Trellix ⋅ Qakbot Evolves to OneNote Malware Distribution QakBot |
2023-01-24 ⋅ Trellix ⋅ Cyberattacks Targeting Ukraine Increase 20-fold at End of 2022 Fueled by Russia-linked Gamaredon Activity Andromeda Formbook Houdini Remcos |
2023-01-05 ⋅ Mandiant ⋅ Turla: A Galaxy of Opportunity KopiLuwak Andromeda QUIETCANARY |
2022-11-28 ⋅ Mandiant ⋅ Always Another Secret: Lifting the Haze on China-nexus Espionage in Southeast Asia BLUEHAZE DARKDEW MISTCLOAK |
2022-10-04 ⋅ YouTube (John Hammond) ⋅ HAVOC C2 - Demon Bypasses Windows 11 Defender Havoc |
2022-08-30 ⋅ Medium the_abjuri5t ⋅ NanoCore RAT Hunting Guide Nanocore RAT |
2022-06-30 ⋅ Trend Micro ⋅ Black Basta Ransomware Operators Expand Their Attack Arsenal With QakBot Trojan and PrintNightmare Exploit Black Basta Cobalt Strike QakBot |
2022-06-08 ⋅ Trustwave ⋅ Not all "Internet Connections" are Equal |
2022-04-29 ⋅ Mandiant ⋅ Trello From the Other Side: Tracking APT29 Phishing Campaigns BEATDROP VaporRage |
2022-04-28 ⋅ Mandiant ⋅ Trello From the Other Side: Tracking APT29 Phishing Campaigns Cobalt Strike |
2022-04-18 ⋅ CitizenLab ⋅ CatalanGate Extensive Mercenary Spyware Operation against Catalans Using Pegasus and Candiru Chrysaor |
2022-04-12 ⋅ Sophos ⋅ Attackers linger on government agency computers before deploying Lockbit ransomware LockBit |
2022-04-05 ⋅ Medium jsecurity101 ⋅ Bypassing Access Mask Auditing Strategies |
2022-03-31 ⋅ Trellix ⋅ Conti Leaks: Examining the Panama Papers of Ransomware LockBit Amadey Buer Conti IcedID LockBit Mailto Maze PhotoLoader Ryuk TrickBot |
2022-03-28 ⋅ Mandiant ⋅ Forged in Fire: A Survey of MobileIron Log4Shell Exploitation KEYPLUG |
2022-03-23 ⋅ Mandiant ⋅ Not So Lazarus: Mapping DPRK Cyber Threat Groups to Government Organizations |
2022-03-21 ⋅ IEEE ⋅ Dynamics of Targeted Ransomware Negotiation |
2022-03-17 ⋅ Trellix ⋅ Suspected DarkHotel APT activity update RMOT |
2022-03-15 ⋅ SecurityIntelligence ⋅ CaddyWiper: Third Wiper Malware Targeting Ukrainian Organizations CaddyWiper |