Click here to download all references as Bib-File.
2023-01-26 ⋅ Mandiant ⋅ Welcome to Goot Camp: Tracking the Evolution of GOOTLOADER Operations GootLoader |
2023-01-19 ⋅ Mandiant ⋅ Suspected Chinese Threat Actors Exploiting FortiOS Vulnerability (CVE-2022-42475) BOLDMOVE BOLDMOVE |
2023-01-05 ⋅ Mandiant ⋅ Turla: A Galaxy of Opportunity KopiLuwak Andromeda QUIETCANARY |
2022-12-15 ⋅ Mandiant ⋅ Trojanized Windows 10 Operating System Installers Targeted Ukrainian Government Cobalt Strike STOWAWAY |
2022-12-13 ⋅ Mandiant ⋅ I Solemnly Swear My Driver Is Up to No Good: Hunting for Attestation Signed Malware POORTRY |
2022-11-28 ⋅ Mandiant ⋅ Always Another Secret: Lifting the Haze on China-nexus Espionage in Southeast Asia BLUEHAZE DARKDEW MISTCLOAK |
2022-10-19 ⋅ Mandiant ⋅ From RM3 to LDR4: URSNIF Leaves Banking Fraud Behind LDR4 |
2022-09-29 ⋅ Mandiant ⋅ Bad VIB(E)s Part One: Investigating Novel Malware Persistence Within ESXi Hypervisors |
2022-09-29 ⋅ Mandiant ⋅ Bad VIB(E)s Part Two: Detection and Hardening within ESXi Hypervisors |
2022-09-23 ⋅ Mandiant ⋅ GRU: Rise of the (Telegram) MinIOns ArguePatch CaddyWiper |
2022-09-14 ⋅ Mandiant ⋅ It's Time to PuTTY! DPRK Job Opportunity Phishing via WhatsApp BLINDINGCAN |
2022-09-08 ⋅ Mandiant ⋅ What to Expect When You’re Electing: Preparing for Cyber Threats to the 2022 U.S. Midterm Elections |
2022-09-07 ⋅ Mandiant ⋅ APT42: Crooked Charms, Cons, and Compromises |
2022-09-07 ⋅ Mandiant ⋅ APT42: Crooked Charms, Cons and Compromises |
2022-08-18 ⋅ Mandiant ⋅ You Can’t Audit Me: APT29 Continues Targeting Microsoft 365 |
2022-08-17 ⋅ Mandiant ⋅ Suspected Iranian Actor Targeting Israeli Shipping, Healthcare, Government and Energy Sectors NorthStar SUGARDUMP SUGARRUSH |
2022-08-04 ⋅ Mandiant ⋅ Pro-PRC “HaiEnergy” Information Operations Campaign Leverages Infrastructure from Public Relations Firm to Disseminate Content on Inauthentic News Sites |
2022-08-04 ⋅ Mandiant ⋅ Likely Iranian Threat Actor Conducts Politically Motivated Disruptive Activity Against Albanian Government Organizations |
2022-08-04 ⋅ Mandiant ⋅ Advanced Persistent Threats (APTs) APT1 APT10 APT12 APT14 APT15 APT16 APT17 APT18 APT19 APT2 APT20 APT21 APT22 APT23 APT24 APT27 APT3 APT30 APT31 APT4 APT40 APT5 APT9 |
2022-07-26 ⋅ Mandiant ⋅ Mandiant Red Team Emulates FIN11 Tactics To Control Operational Technology Servers Clop Industroyer MimiKatz Triton |