Click here to download all references as Bib-File.•
| 2023-05-22
⋅
eSentire
⋅
The Hunt for VENOM SPIDER PART 2 VENOM SPIDER |
| 2023-05-22
⋅
The DFIR Report
⋅
IcedID Macro Ends in Nokoyawa Ransomware IcedID Nokoyawa Ransomware PhotoLoader |
| 2023-05-22
⋅
AhnLab
⋅
Kimsuky Group Using Meterpreter to Attack Web Servers Kimsuky Meterpreter |
| 2023-05-22
⋅
Sekoia
⋅
Bluenoroff’s RustBucket campaign RustBucket WebbyTea |
| 2023-05-22
⋅
kienmanowar Blog
⋅
[Case study] Decrypt strings using Dumpulator |
| 2023-05-22
⋅
Check Point
⋅
Cloud-based Malware Delivery: The Evolution of GuLoader CloudEyE |
| 2023-05-22
⋅
Trend Micro
⋅
BlackCat Ransomware Deploys New Signed Kernel Driver BlackCat |
| 2023-05-22
⋅
Cluster25
⋅
Back in Black: BlackByte Ransomware returns with its New Technology (NT) version BlackByte |
| 2023-05-21
⋅
Github (0xThiebaut)
⋅
PCAPeek IcedID QakBot |
| 2023-05-20
⋅
DataBreaches.net
⋅
Peachtree Orthopedics alerts patients to cyberattack; third patient data breach in seven years TheDarkOverlord |
| 2023-05-20
⋅
Kraken - The Deep Sea Lurker Part 1 KrakenKeylogger |
| 2023-05-19
⋅
YouTube (NorthSec)
⋅
Go reverse-engineering workshop GoldMax |
| 2023-05-19
⋅
Kaspersky Labs
⋅
CloudWizard APT: the bad magic story goes on PowerMagic CloudWizard CommonMagic Prikormka |
| 2023-05-19
⋅
Trend Micro
⋅
Rust-Based Info Stealers Abuse GitHub Codespaces DeltaStealer |
| 2023-05-19
⋅
cocomelonc
⋅
Malware source code investigation: AsyncRAT AsyncRAT |
| 2023-05-19
⋅
Twitter (@embee_research)
⋅
Analysis of Amadey Bot Infrastructure Using Shodan Amadey |
| 2023-05-18
⋅
zimperium
⋅
Zimperium’s MTD Against OilAlpha: A Comprehensive Defense Strategy OilAlpha |
| 2023-05-18
⋅
AhnLab
⋅
SparkRAT Being Distributed Within a Korean VPN Installer SparkRAT |
| 2023-05-18
⋅
Twitter (@embee_research)
⋅
Identifying Laplas Infrastructure Using Shodan and Censys LaplasClipper |
| 2023-05-18
⋅
Intezer
⋅
How Hackers Use Binary Padding to Outsmart Sandboxes and Infiltrate Your Systems Emotet |