Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2024-08-29ProofpointPim Trouerbach, Selena Larson, Tommy Madjar
The Malware That Must Not Be Named: Suspected Espionage Campaign Delivers “Voldemort”
Voldemort
2024-08-29NetskopeLeandro Froes
Latrodectus Rapid Evolution Continues With Latest New Payload Features
Latrodectus
2024-08-29SecuronixDen Iyzvyk, Tim Peck
From Cobalt Strike to Mimikatz: A Deep Dive into the SLOW#TEMPEST Campaign Targeting Chinese Users
Cobalt Strike MimiKatz
2024-08-29Hunt.ioHunt.io
Latrodectus Malware Masquerades as AhnLab Security Software to Infect Victims
Latrodectus
2024-08-28Help Net SecurityHelp Net Security
APT group exploits WPS Office for Windows RCE vulnerability (CVE-2024-7262)
2024-08-28Talos IntelligenceCraig Jackson, James Nutland, Terryn Valikodath
BlackByte blends tried-and-true tradecraft with newly disclosed vulnerabilities to support ongoing attacks
BlackByte
2024-08-27DailyDarkWebDailyDarkWeb
Threat Actor Claimed to Breach Database of DimeCuba
SILKFIN AGENCY
2024-08-27LumenBlack Lotus Labs
Taking the Crossroads: The Versa Director Zero-Day Exploitation
VersaMem
2024-08-27SonicWallSecurity News
AutoIT Bot Targets Gmail Accounts First
2024-08-26NetskopeLeandro Froes
Static Unpacker for Latrodectus
Latrodectus
2024-08-26The DFIR ReportThe DFIR Report
BlackSuit Ransomware
BlackSuit Cobalt Strike SystemBC
2024-08-23ITOCHUSuguru Ishimaru, Yusuke Niwa
Pirates of The Nang Hai: Follow the Artifacts No One Know
Cobalt Strike Xiangoop
2024-08-23TEAMT5Still Hsu
Sailing the Seven SEAs: Deep Dive into Polaris' Arsenal and Intelligence Insights
Cobalt Strike Hodur PlugX TONESHELL
2024-08-23DailyDarkWebDailyDarkWeb
A Threat Actor Alleged Breach of Sri Lankan Farmers Community Database
SILKFIN AGENCY
2024-08-22DFIR.chStephan Berger
Botnet Fenix
Fenix
2024-08-22Github (X-ZIGZAG)X-ZIGZAG
Github Repository for X-ZIGZAG
X-ZIGZAG
2024-08-22NTTRintaro Koike
AppDomainManager Injectionを悪用したマルウェアによる攻撃について
Cobalt Strike Earth Baxia
2024-08-22NTT SecurityRintaro Koike, Ryu Hiyoshi
Attacks by malware abusing AppDomainManager Injection
2024-08-22MandiantAaron Lee, Praveeth DSouza
PEAKLIGHT: Decoding the Stealthy Memory-Only Malware
Emmenhtal
2024-08-21Cisco TalosAsheer Malhotra, Guilherme Venere, Vitor Ventura
MoonPeak malware from North Korean actors unveils new details on attacker infrastructure
MoonPeak XenoRAT UAT-5394