Click here to download all references as Bib-File.•
2025-06-16
⋅
Trend Micro
⋅
Clone, Compile, Compromise: Water Curse’s Open-Source Malware Trap on GitHub |
2025-06-03
⋅
VMRay
⋅
Rhadamanthys slips through in large installer files Rhadamanthys |
2025-05-16
⋅
Gdata
⋅
Printer company provided infected software downloads for half a year SnipVex |
2025-05-07
⋅
US Department of Justice
⋅
Case 4:25-cr-00160-JDR: Indictment of Alexey Viktorovich Chertkov, Kirill Vladimirovich Morozov, Aleksandr Aleksandrovich Shishkin and Dmitriy Rubtsov TheMoon |
2025-03-28
⋅
Intrinsec
⋅
From espionage to PsyOps: Tracking operations and bulletproof providers of UACs in 2025 sLoad NetSupportManager RAT Remcos SmokeLoader |
2025-03-03
⋅
Trend Micro
⋅
Black Basta and Cactus Ransomware Groups Add BackConnect Malware to Their Arsenal Black Basta Black Basta Cactus ReedBed |
2025-02-23
⋅
Github (albertzsigovits)
⋅
ToxicEye RAT config extraction and YARA signatures ToxicEye |
2025-02-13
⋅
Recorded Future
⋅
RedMike (Salt Typhoon) Exploits Vulnerable Cisco Devices of Global Telecommunications Providers GhostEmperor |
2025-01-29
⋅
Google
⋅
ScatterBrain: Unmasking the Shadow of PoisonPlug's Obfuscator POISONPLUG ShadowPad SNAPPYBEE |
2024-11-28
⋅
Hunt.io
⋅
Uncovering Threat Actor Tactics: How Open Directories Provide Insight into XWorm Delivery Strategies XWorm |
2024-11-04
⋅
Cleafy
⋅
ToxicPanda: a new banking trojan from Asia hit Europe and LATAM ToxicPanda |
2024-09-26
⋅
The Wall Street Journal
⋅
China-Linked Hackers Breach U.S. Internet Providers in New ‘Salt Typhoon’ Cyberattack GhostEmperor |
2024-09-20
⋅
CISO Series
⋅
Cybersecurity News: INC targets healthcare, Providence schools cyberattack, Apple iPads bricked INC Storm-0494 |
2024-09-10
⋅
Cleafy
⋅
A new TrickMo saga: from Banking Trojan to Victim's Data Leak TrickMo |
2024-09-10
⋅
Talos Intelligence
⋅
DragonRank, a Chinese-speaking SEO manipulator service provider IISpy PlugX DragonRank |
2024-04-11
⋅
Microsoft
⋅
How Microsoft discovers and mitigates evolving attacks against AI guardrails |
2024-04-05
⋅
Heimdal Security
⋅
Powerhost’s ESXi Servers Encrypted with New SEXi Ransomware SEXi SEXi |
2024-03-14
⋅
Orange Cyberdefense
⋅
Unveiling the depths of residential proxies providers |
2024-03-14
⋅
Sekoia
⋅
Unveiling the depths of Residential Proxies providers |
2024-03-01
⋅
0x0v1
⋅
APT37's ROKRAT HWP Object Linking and Embedding RokRAT |