Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2025-09-30Palo Alto Networks Unit 42Lior Rochberger
Phantom Taurus: A New Chinese Nexus APT and the Discovery of the NET-STAR Malware Suite
NET-STAR
2025-09-10Palo Alto Networks Unit 42Itay Cohen, Ofek Lahiani
AdaptixC2: A New Open-Source Framework Leveraged in Real-World Attacks
AdaptixC2
2025-06-17Palo Alto Networks Unit 42Dominik Reichel
Exploring a New KimJongRAT Stealer Variant and Its PowerShell Implementation
KimJongRat
2025-06-13Twitter (@Unit42_Intel)Unit 42
Tweet about APT27 SysUpdate activity
HyperSSL HyperSSL
2025-05-07Palo Alto Networks Unit 42Unit 42
Iranian Cyber Actors Impersonate Model Agency in Suspected Espionage Operation
APT35
2025-04-14Palo Alto Networks Unit 42Prashil Pattni
Slow Pisces Targets Developers With Coding Challenges and Introduces New Customized Python Malware
RN Stealer
2025-03-06Palo Alto Networks Unit 42Janos Szurdi, Reethika Ramesh
The Next Level: Typo DGAs Used in Malicious Redirection Chains
2025-02-28Palo Alto Networks Unit 42Margaret Kelley
JavaGhost’s Persistent Phishing Attacks From the Cloud
JavaGhost
2025-02-27Palo Alto Networks Unit 42Lior Rochberger, Tom Fakterman
Squidoor: Suspected Chinese Threat Actor’s Backdoor Targets Global Organizations
FINALDRAFT FINALDRAFT REF7707
2025-02-24Palo Alto Networks Unit 42Alex Armstrong
Auto-Color: An Emerging and Evasive Linux Backdoor
2025-01-17Twitter (@Unit42_Intel)Unit 42
Tweet about affiliates of DarkScorpius using Social Engineering via MS Teams
UNC4393
2024-11-19Palo Alto Networks Unit 42Asher Davila, Chris Navarrete
FrostyGoop’s Zoom-In: A Closer Look into the Malware Artifacts, Behaviors and Network Communications
FrostyGoop
2024-11-14Palo AltoUnit 42
Fake North Korean IT Worker Linked to BeaverTail Video Conference App Phishing Attack
BeaverTail InvisibleFerret WageMole
2024-10-30Palo Alto Networks Unit 42Unit 42
Jumpy Pisces Engages in Play Ransomware
Dtrack MimiKatz PLAY Sliver
2024-10-09Palo AltoUnit 42
Contagious Interview: DPRK Threat Actors Lure Tech Industry Job Seekers to Install New Variants of BeaverTail and InvisibleFerret Malware
BeaverTail Beavertail
2024-09-26Palo Alto Networks Unit 42Daniel Frank, Lior Rochberger
Unraveling Sparkling Pisces’s Tool Set: KLogEXE and FPSpy
FPSpy KLogEXE Kimsuky
2024-09-23Palo Alto Networks Unit 42Dominik Reichel, Yaron Samuel
Inside SnipBot: The Latest RomCom Malware Variant
ROMCOM RAT
2024-09-19Palo Alto Networks Unit 42Dominik Reichel
Discovering Splinter: A First Look at a New Post-Exploitation Red Team Tool
Splinter
2024-09-10Palo Alto Networks Unit 42Jerome Tujague, Navin Thomas
Threat Assessment: Repellent Scorpius, Distributors of Cicada3301 Ransomware
Cicada3301
2024-08-09Palo Alto Networks Unit 42Amanda Tanner, Kristopher Bleich
Ransomware Review: First Half of 2024
Ukrainian Cyber Alliance