Click here to download all references as Bib-File.•
| 2021-08-04
⋅
ESET Research
⋅
Anatomy of Native IIS Malware (slides) IISniff RGDoor |
| 2021-08-04
⋅
McAfee
⋅
See Ya Sharp: A Loader’s Tale |
| 2021-07-28
⋅
McAfee
⋅
Babuk: Moving to VM and *nix Systems Before Stepping Away Babuk |
| 2021-07-19
⋅
Malwarebytes
⋅
Remcos RAT delivered via Visual Basic Remcos |
| 2021-07-08
⋅
McAfee
⋅
Hancitor Making Use of Cookies to Prevent URL Scraping Hancitor |
| 2021-07-08
⋅
McAfee
⋅
Zloader With a New Infection Technique Zloader |
| 2021-07-07
⋅
McAfee
⋅
Ryuk Ransomware Now Targeting Webservers Cobalt Strike Ryuk |
| 2021-06-29
⋅
Twitter (@IntezerLabs)
⋅
Tweet on unknown elf backdoor based on an open source remote shell named "amcsh" BioSet |
| 2021-06-16
⋅
Mandiant
⋅
Smoking Out a DARKSIDE Affiliate’s Supply Chain Software Compromise DarkSide Cobalt Strike DarkSide SMOKEDHAM UNC2465 |
| 2021-06-16
⋅
Mandiant
⋅
Smoking Out a DARKSIDE Affiliate’s Supply Chain Software Compromise Cobalt Strike SMOKEDHAM |
| 2021-06-16
⋅
FireEye
⋅
Smoking Out a DARKSIDE Affiliate’s Supply Chain Software Compromise Cobalt Strike SMOKEDHAM |
| 2021-06-10
⋅
McAfee
⋅
Are Virtual Machines the New Gold for Cyber Criminals? Babuk DarkSide |
| 2021-06-08
⋅
Trend Micro
⋅
Modern Ransomware’s Double Extortion Tactics and How to Protect Enterprises Against Them Nefilim |
| 2021-06-03
⋅
Talos
⋅
Necro Python bot adds new exploits and Tezos mining to its bag of tricks N3Cr0m0rPh |
| 2021-05-18
⋅
Elastic
⋅
ProblemChild: Detecting living-off-the-land attacks using the Elastic Stack |
| 2021-05-14
⋅
McAfee
⋅
Darkside Ransomware Victims Sold Short DarkSide |
| 2021-05-13
⋅
Talos
⋅
Transparent Tribe APT expands its Windows malware arsenal Crimson RAT Oblique RAT |
| 2021-05-12
⋅
McAfee
⋅
Technical Analysis of Access Token Theft and Manipulation |
| 2021-05-11
⋅
Mandiant
⋅
Shining a Light on DARKSIDE Ransomware Operations DarkSide DarkSide UNC2465 |
| 2021-05-11
⋅
FireEye
⋅
Shining a Light on DARKSIDE Ransomware Operations Cobalt Strike DarkSide |