Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2021-07-19Council of the European UnionCouncil of the European Union
@online{union:20210719:china:69896f8, author = {Council of the European Union}, title = {{China: Declaration by the High Representative on behalf of the European Union urging Chinese authorities to take action against malicious cyber activities undertaken from its territory}}, date = {2021-07-19}, organization = {Council of the European Union}, url = {https://www.consilium.europa.eu/en/press/press-releases/2021/07/19/declaration-by-the-high-representative-on-behalf-of-the-eu-urging-china-to-take-action-against-malicious-cyber-activities-undertaken-from-its-territory/}, language = {English}, urldate = {2021-07-22} } China: Declaration by the High Representative on behalf of the European Union urging Chinese authorities to take action against malicious cyber activities undertaken from its territory
APT31
2021-07-19Government of CanadaGlobal Affairs Canada
@online{canada:20210719:statement:e1247f4, author = {Global Affairs Canada}, title = {{Statement on China’s cyber campaigns}}, date = {2021-07-19}, organization = {Government of Canada}, url = {https://www.canada.ca/en/global-affairs/news/2021/07/statement-on-chinas-cyber-campaigns.html}, language = {English}, urldate = {2021-07-22} } Statement on China’s cyber campaigns
Leviathan
2021-07-19BitdefenderBitdefender
@techreport{bitdefender:20210719:debugging:48353a0, author = {Bitdefender}, title = {{Debugging MosaicLoader, One Step at a Time}}, date = {2021-07-19}, institution = {Bitdefender}, url = {https://www.bitdefender.com/files/News/CaseStudies/study/400/Bitdefender-PR-Whitepaper-MosaicLoader-creat5540-en-EN.pdf}, language = {English}, urldate = {2021-07-20} } Debugging MosaicLoader, One Step at a Time
AsyncRAT Glupteba
2021-07-19Minister for Foreign Affairs of AustraliaKaren Andrews, Peter Dutton
@online{andrews:20210719:australia:8ca5b16, author = {Karen Andrews and Peter Dutton}, title = {{Australia joins international partners in attribution of malicious cyber activity to China}}, date = {2021-07-19}, organization = {Minister for Foreign Affairs of Australia}, url = {https://www.foreignminister.gov.au/minister/marise-payne/media-release/australia-joins-international-partners-attribution-malicious-cyber-activity-china}, language = {English}, urldate = {2021-07-22} } Australia joins international partners in attribution of malicious cyber activity to China
APT31 HAFNIUM Leviathan
2021-07-19Washington PostCraig Timberg, Reed Albergotti, Elodie Guéguen
@online{timberg:20210719:despite:33f5152, author = {Craig Timberg and Reed Albergotti and Elodie Guéguen}, title = {{Despite the hype, iPhone security no match for NSO spyware}}, date = {2021-07-19}, organization = {Washington Post}, url = {https://www.washingtonpost.com/technology/2021/07/19/apple-iphone-nso/}, language = {English}, urldate = {2021-07-21} } Despite the hype, iPhone security no match for NSO spyware
Chrysaor
2021-07-19Ministry of Foreign Affairs of JapanMinistry of Foreign Affairs of Japan
@online{japan:20210719:cases:7aac86a, author = {Ministry of Foreign Affairs of Japan}, title = {{Cases of cyberattacks including those by a group known as APT40 which the Chinese government is behind (Statement by Press Secretary YOSHIDA Tomoyuki)}}, date = {2021-07-19}, organization = {Ministry of Foreign Affairs of Japan}, url = {https://www.mofa.go.jp/press/danwa/press6e_000312.html}, language = {English}, urldate = {2021-07-22} } Cases of cyberattacks including those by a group known as APT40 which the Chinese government is behind (Statement by Press Secretary YOSHIDA Tomoyuki)
Leviathan
2021-07-19NCSC UKNCSC UK
@online{uk:20210719:uk:8ecd954, author = {NCSC UK}, title = {{UK and allies hold Chinese state responsible for pervasive pattern of hacking}}, date = {2021-07-19}, organization = {NCSC UK}, url = {https://www.ncsc.gov.uk/news/uk-allies-hold-chinese-state-responsible-for-pervasive-pattern-of-hacking}, language = {English}, urldate = {2021-07-22} } UK and allies hold Chinese state responsible for pervasive pattern of hacking
APT31 Leviathan
2021-07-19Washington PostJoanna Slater, Niha Masih
@online{slater:20210719:spyware:b4481e9, author = {Joanna Slater and Niha Masih}, title = {{The spyware is sold to governments to fight terrorism. In India, it was used to hack journalists and others.}}, date = {2021-07-19}, organization = {Washington Post}, url = {https://www.washingtonpost.com/world/2021/07/19/india-nso-pegasus/}, language = {English}, urldate = {2021-07-21} } The spyware is sold to governments to fight terrorism. In India, it was used to hack journalists and others.
Chrysaor
2021-07-19GOV.UKNCSC UK, Dominic Raab
@online{uk:20210719:uk:9674820, author = {NCSC UK and Dominic Raab}, title = {{UK and allies hold Chinese state responsible for a pervasive pattern of hacking}}, date = {2021-07-19}, organization = {GOV.UK}, url = {https://www.gov.uk/government/news/uk-and-allies-hold-chinese-state-responsible-for-a-pervasive-pattern-of-hacking}, language = {English}, urldate = {2021-07-22} } UK and allies hold Chinese state responsible for a pervasive pattern of hacking
APT31 HAFNIUM Leviathan
2021-07-19CISACISA
@online{cisa:20210719:alert:bc070a7, author = {CISA}, title = {{Alert (AA21-200B): Chinese State-Sponsored Cyber Operations: Observed TTPs}}, date = {2021-07-19}, organization = {CISA}, url = {https://us-cert.cisa.gov/ncas/alerts/aa21-200b}, language = {English}, urldate = {2021-07-22} } Alert (AA21-200B): Chinese State-Sponsored Cyber Operations: Observed TTPs
Leviathan
2021-07-19The DFIR ReportThe DFIR Report
@online{report:20210719:icedid:0365384, author = {The DFIR Report}, title = {{IcedID and Cobalt Strike vs Antivirus}}, date = {2021-07-19}, organization = {The DFIR Report}, url = {https://thedfirreport.com/2021/07/19/icedid-and-cobalt-strike-vs-antivirus/}, language = {English}, urldate = {2021-07-20} } IcedID and Cobalt Strike vs Antivirus
Cobalt Strike IcedID
2021-07-19EllipticElliptic
@online{elliptic:20210719:revil:12b16d1, author = {Elliptic}, title = {{REvil Revealed - Tracking a Ransomware Negotiation and Payment}}, date = {2021-07-19}, organization = {Elliptic}, url = {https://www.elliptic.co/blog/revil-revealed-tracking-ransomware-negotiation-and-payment}, language = {English}, urldate = {2021-07-20} } REvil Revealed - Tracking a Ransomware Negotiation and Payment
REvil REvil
2021-07-18The GuardianStephanie Kirchgaessner
@online{kirchgaessner:20210718:saudis:df03df6, author = {Stephanie Kirchgaessner}, title = {{Saudis behind NSO spyware attack on Jamal Khashoggi’s family, leak suggests}}, date = {2021-07-18}, organization = {The Guardian}, url = {https://www.theguardian.com/world/2021/jul/18/nso-spyware-used-to-target-family-of-jamal-khashoggi-leaked-data-shows-saudis-pegasus}, language = {English}, urldate = {2021-07-24} } Saudis behind NSO spyware attack on Jamal Khashoggi’s family, leak suggests
Chrysaor
2021-07-18Github (AmnestyTech)Amnesty International
@online{international:20210718:nso:e92b282, author = {Amnesty International}, title = {{NSO Group Pegasus Indicator of Compromise}}, date = {2021-07-18}, organization = {Github (AmnestyTech)}, url = {https://github.com/AmnestyTech/investigations/tree/master/2021-07-18_nso}, language = {English}, urldate = {2021-07-24} } NSO Group Pegasus Indicator of Compromise
Chrysaor
2021-07-18The GuardianNina Lakhani
@online{lakhani:20210718:revealed:3a4962f, author = {Nina Lakhani}, title = {{Revealed: murdered journalist’s number selected by Mexican NSO client}}, date = {2021-07-18}, organization = {The Guardian}, url = {https://www.theguardian.com/news/2021/jul/18/revealed-murdered-journalist-number-selected-mexico-nso-client-cecilio-pineda-birto}, language = {English}, urldate = {2021-07-24} } Revealed: murdered journalist’s number selected by Mexican NSO client
Chrysaor
2021-07-18LemondeDamien Leloup
@online{leloup:20210718:from:8ac3091, author = {Damien Leloup}, title = {{From Rabat to Paris, Morocco does not let go of journalists}}, date = {2021-07-18}, organization = {Lemonde}, url = {https://www.lemonde.fr/projet-pegasus/article/2021/07/18/au-maroc-comme-en-france-des-journalistes-mis-sous-surveillance-avec-le-logiciel-pegasus_6088654_6088648.html}, language = {French}, urldate = {2021-07-24} } From Rabat to Paris, Morocco does not let go of journalists
Chrysaor
2021-07-18Github (mvt-project)mvt-project
@online{mvtproject:20210718:mobile:15d676b, author = {mvt-project}, title = {{Mobile Verification Toolkit}}, date = {2021-07-18}, organization = {Github (mvt-project)}, url = {https://github.com/mvt-project/mvt}, language = {English}, urldate = {2021-07-24} } Mobile Verification Toolkit
2021-07-18The GuardianShaun Walker
@online{walker:20210718:viktor:bfcee87, author = {Shaun Walker}, title = {{Viktor Orbán using NSO spyware in assault on media, data suggests}}, date = {2021-07-18}, organization = {The Guardian}, url = {https://www.theguardian.com/news/2021/jul/18/viktor-orban-using-nso-spyware-in-assault-on-media-data-suggests}, language = {English}, urldate = {2021-07-24} } Viktor Orbán using NSO spyware in assault on media, data suggests
Chrysaor
2021-07-18The GuardianThe Guardian
@online{guardian:20210718:guardians:7ba7cb7, author = {The Guardian}, title = {{The Guardian's covereage on Pegasus Project}}, date = {2021-07-18}, organization = {The Guardian}, url = {https://www.theguardian.com/news/series/pegasus-project}, language = {English}, urldate = {2021-07-24} } The Guardian's covereage on Pegasus Project
Chrysaor
2021-07-18Twitter (@billmarczak)Bill Marczak
@online{marczak:20210718:twitter:d1f4dfe, author = {Bill Marczak}, title = {{Twitter thread with a couple of interesting bits from AmnestyTech's new report on Pegasus}}, date = {2021-07-18}, organization = {Twitter (@billmarczak)}, url = {https://twitter.com/billmarczak/status/1416801439402262529}, language = {English}, urldate = {2021-07-24} } Twitter thread with a couple of interesting bits from AmnestyTech's new report on Pegasus
Chrysaor