Click here to download all references as Bib-File.•
| 2024-08-02
⋅
Volexity
⋅
StormBamboo Compromises ISP to Abuse Insecure Software Update Mechanisms CDDS DUSTPAN MgBot |
| 2023-03-30
⋅
Volexity
⋅
3CX Supply Chain Compromise Leads to ICONIC Incident 3CX Backdoor IconicStealer |
| 2023-03-07
⋅
Volexity
⋅
Using Memory Analysis to Detect EDR-Nullifying Malware |
| 2021-12-14
⋅
Kaspersky Labs
⋅
Owowa: the add-on that turns your OWA into a credential stealer and remote access panel Owowa |
| 2021-10-07
⋅
Kaspersky
⋅
LYCEUM Reborn: Counterintelligence in the Middle East danbot LYCEUM |
| 2021-09-30
⋅
Kaspersky
⋅
GhostEmperor: From ProxyLogon to kernel mode GhostEmperor GhostEmperor |
| 2021-07-14
⋅
Kaspersky
⋅
LuminousMoth APT: Sweeping attacks for the chosen few Cobalt Strike |
| 2020-10-29
⋅
Cisco Talos
⋅
DoNot’s Firestarter abuses Google Firebase Cloud Messaging to spread KnSpy |
| 2020-10-06
⋅
Talos
⋅
PoetRAT: Malware targeting public and private sector in Azerbaijan evolves Poet RAT |
| 2020-08-13
⋅
Talos Intelligence
⋅
Attribution: A Puzzle WellMail elf.wellmess AcidBox WellMess |
| 2020-06-29
⋅
Cisco Talos
⋅
PROMETHIUM extends global reach with StrongPity3 APT StrongPity |
| 2020-05-19
⋅
Cisco Talos
⋅
The wolf is back... WolfRAT |
| 2020-04-16
⋅
Cisco Talos
⋅
PoetRAT: Python RAT uses COVID-19 lures to target Azerbaijan public and private sectors Poet RAT |
| 2020-03-05
⋅
Cisco Talos
⋅
Bisonal: 10 years of play Korlia |
| 2020-01-16
⋅
Cisco Talos
⋅
JhoneRAT: Cloud based python RAT targeting Middle Eastern countries JhoneRAT |
| 2019-11-07
⋅
Virus Bulletin
⋅
DNS on Fire DNSpionage Sea Turtle |
| 2019-11-07
⋅
Virus Bulletin
⋅
DNS on FIre DNSpionage Sea Turtle |
| 2019-09-24
⋅
Cisco Talos
⋅
How Tortoiseshell created a fake veteran hiring website to host malware Liderc SysKit |
| 2019-08-27
⋅
Cisco Talos
⋅
China Chopper still active 9 years later CHINACHOPPER |
| 2019-07-09
⋅
Cisco Talos
⋅
Sea Turtle keeps on swimming, finds new victims, DNS hijacking techniques Sea Turtle |