Click here to download all references as Bib-File.•
2024-08-29
⋅
Proofpoint
⋅
The Malware That Must Not Be Named: Suspected Espionage Campaign Delivers “Voldemort” Voldemort |
2024-08-22
⋅
Mandiant
⋅
PEAKLIGHT: Decoding the Stealthy Memory-Only Malware Emmenhtal |
2024-08-19
⋅
Aquasec
⋅
PG_MEM: A Malware Hidden in the Postgres Processes XMRIG |
2024-08-14
⋅
Aquasec
⋅
Gafgyt Malware Variant Exploits GPU Power and Cloud Native Environments Bashlite |
2024-06-10
⋅
The Hacker News
⋅
More_eggs Malware Disguised as Resumes Targets Recruiters in Phishing Attack More_eggs |
2024-06-05
⋅
Qurakslab
⋅
QBinDiff: A modular differ to enhance binary diffing and graph alignment (Slides) |
2024-06-05
⋅
⋅
QuarksLab
⋅
QBinDiff: A modular differ to enhance binary diffing and graph alignment (Video) |
2024-05-22
⋅
Kaspersky Labs
⋅
Stealers, stealers and more stealers |
2024-04-24
⋅
NCSC UK
⋅
Line Dancer - In-memory shellcode loader targeting Cisco Adaptive Security Appliance (ASA) devices. |
2024-04-15
⋅
Positive Technologies
⋅
SteganoAmor campaign: TA558 mass-attacking companies and public institutions all around the world LokiBot 404 Keylogger Agent Tesla CloudEyE Formbook Remcos XWorm |
2024-02-05
⋅
Reuters
⋅
Philippines wards off cyber attacks from China-based hackers |
2024-01-18
⋅
Detect Mortis Locker Ransomware with YARA Mortis |
2024-01-18
⋅
Morphisec
⋅
Chae$ Chronicles: Version 4.1 Dedicated to Morphisec Researchers Chaes |
2024-01-18
⋅
Morphisec
⋅
Chae$ Chronicles: Version 4.1 Dedicated to Morphisec Researchers Chaes |
2024-01-10
⋅
Volexity
⋅
Active Exploitation of Two Zero-Day Vulnerabilities in Ivanti Connect Secure VPN UTA0178 |
2023-12-21
⋅
BPF Memory Forensics with Volatility 3 BPFDoor TripleCross |
2023-11-01
⋅
Twitter (@embee_research)
⋅
Malware Unpacking With Memory Dumps - Intermediate Methods (Pe-Sieve, Process Hacker, Hxd and Pe-bear) AsyncRAT |
2023-10-18
⋅
Google
⋅
Government-backed actors exploiting WinRAR vulnerability APT40 |
2023-10-03
⋅
Lighting the Exfiltration Infrastructure of a LockBit Affiliate (and more) LockBit LockBit Conti LockBit |
2023-10-01
⋅
r-tec
⋅
.NET Assembly Obfuscation for Memory Scanner Evasion |