Click here to download all references as Bib-File.•
| 2023-06-02
⋅
Mandiant
⋅
Zero-Day Vulnerability in MOVEit Transfer Exploited for Data Theft |
| 2023-02-03
⋅
Mandiant
⋅
Float Like a Butterfly Sting Like a Bee BazarBackdoor BumbleBee Cobalt Strike |
| 2021-10-07
⋅
Mandiant
⋅
FIN12: The Prolific Ransomware Intrusion Threat Actor That Has Aggressively Pursued Healthcare Targets BazarBackdoor GRIMAGENT Ryuk |
| 2021-05-11
⋅
Mandiant
⋅
Shining a Light on DARKSIDE Ransomware Operations DarkSide DarkSide UNC2465 |
| 2021-05-11
⋅
FireEye
⋅
Shining a Light on DARKSIDE Ransomware Operations Cobalt Strike DarkSide |
| 2021-02-22
⋅
FireEye
⋅
Cyber Criminals Exploit Accellion FTA for Data Theft and Extortion DEWMODE Clop |
| 2020-12-21
⋅
IronNet
⋅
Russian cyber attack campaigns and actors WellMail elf.wellmess Agent.BTZ BlackEnergy EternalPetya Havex RAT Industroyer Ryuk Triton WellMess |
| 2020-10-28
⋅
FireEye
⋅
Unhappy Hour Special: KEGTAP and SINGLEMALT With a Ransomware Chaser BazarBackdoor Cobalt Strike Ryuk UNC1878 |
| 2020-10-14
⋅
FireEye
⋅
FIN11: Widespread Email Campaigns as Precursor for Ransomware and Data Theft FIN11 |
| 2020-05-21
⋅
BrightTALK (FireEye)
⋅
Navigating MAZE: Analysis of a Rising Ransomware Threat Maze |
| 2020-05-07
⋅
FireEye Inc
⋅
Navigating the MAZE: Tactics, Techniques and Procedures Associated With MAZE Ransomware Incidents Maze |
| 2019-10-10
⋅
Twitter (@StopMalvertisin)
⋅
Tweet on Malware Sample Buer |
| 2019-10-10
⋅
FireEye
⋅
Mahalo FIN7: Responding to the Criminal Operators’ New Tools and Techniques BOOSTWRITE |
| 2019-01-11
⋅
FireEye
⋅
A Nasty Trick: From Credential Theft Malware to Business Disruption Ryuk TrickBot GRIM SPIDER WIZARD SPIDER |
| 2018-08-01
⋅
FireEye
⋅
On the Hunt for FIN7: Pursuing an Enigmatic and Evasive Global Criminal Operation BELLHOP POWERPIPE BABYMETAL SocksBot FIN7 |
| 2014-08-31
⋅
StopMalvertising
⋅
Introduction to the ZeroLocker ransomware ZeroLocker |
| 2014-07-16
⋅
StopMalvertising
⋅
Mini Analysis of the TinyBanker Tinba Tinba |
| 2014-04-27
⋅
StopMalvertising
⋅
Analysis of the Predator Pain Keylogger HawkEye Keylogger |
| 2012-07-09
⋅
StopMalvertising
⋅
The #c3284d# Malware Network - Stats.php - Pseudo Random Domains RunForestRun |
| 2012-04-20
⋅
StopMalvertising
⋅
Analysis of DarkMegi aka NpcDark DarkMegi |
| 2011-08-04
⋅
Stop Malvertising Rootkits
⋅
Analysis of ngrBot NgrBot |