Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2022-09-20vmwareDana Behling
Threat Report: Illuminating Volume Shadow Deletion
Conti HelloKitty
2022-09-20vmwareDana Behling
Threat Research: New Method of Volume Shadow Backup Deletion Seen in Recent Ransomware
2022-09-20Recorded FutureInsikt Group®
Threat Actors Continue to Abuse Google Tag Manager for Payment Card e-Skimming
2022-09-19Virus BulletinTakahiro Haruyama
Tracking the entire iceberg - long-term APT malware C2 protocol emulation and scanning
ShadowPad Winnti
2022-09-19Recorded FutureInsikt Group®
Russia-Nexus UAC-0113 Emulating Telecommunication Providers in Ukraine
Ave Maria Colibri Loader DCRat
2022-09-17Twitter (@MsftSecIntel)Microsoft Threat Intelligence
Tweet on click fraud activity DEV-0796
Phlox Tempest
2022-09-16GovCERT.chGovCERT.ch
Unflattening ConfuserEx .NET Code in IDA
Ginzo Stealer
2022-09-15DuskRiseCluster25 Threat Intel Team
Erbium InfoStealer Enters the Scene: Characteristics and Origins
Erbium Stealer
2022-09-15SentinelOneJim Walter
From the Front Lines | Slam! Anatomy of a Publicly-Available Ransomware Builder
Slam
2022-09-15SymantecThreat Hunter Team
Webworm: Espionage Attackers Testing and Using Older Modified RATs
9002 RAT Ghost RAT Trochilus RAT
2022-09-15AquasecAsaf Eitani, Assaf Morag
Threat Alert: New Malware in the Cloud By TeamTNT
Tsunami
2022-09-15SekoiaThreat & Detection Research Team
PrivateLoader: the loader of the prevalent ruzki PPI service
Agent Tesla Coinminer DanaBot DCRat Eternity Stealer Glupteba Mars Stealer NetSupportManager RAT Nymaim Nymaim2 Phoenix Keylogger PrivateLoader Raccoon RedLine Stealer SmokeLoader Socelars STOP Vidar YTStealer
2022-09-15KasperskyOleg Kupreev
Self-spreading stealer attacks gamers via YouTube
RedLine Stealer
2022-09-14MandiantJames Maclachlan, Mathew Potaczek, Matt Williams, Nino Isakovic, Yash Gupta
It's Time to PuTTY! DPRK Job Opportunity Phishing via WhatsApp
BLINDINGCAN miniBlindingCan sRDI
2022-09-14CISAAustralian Cyber Security Centre (ACSC), CSE Canada, FBI, NCSC UK, NSA, U.S. Cyber Command, U.S. Department of the Treasury, US-CERT
Alert (AA22-257A): Iranian Islamic Revolutionary Guard Corps-Affiliated Cyber Actors Exploiting Vulnerabilities for Data Extortion and Disk Encryption for Ransom Operations
2022-09-14CybereasonDerrick Masters, Loïc Castel
THREAT ANALYSIS REPORT: Abusing Notepad++ Plugins for Evasion and Persistence
Meterpreter
2022-09-14Seguranca InformaticaPedro Tavares
URSA trojan is back with a new dance
Mispadu
2022-09-14SecureworksCounter Threat Unit ResearchTeam
Opsec Mistakes Reveal COBALT MIRAGE Threat Actors
TUNNELFISH
2022-09-14ESET ResearchMathieu Tartare, Thibaut Passilly, Vladislav Hrčka
You never walk alone: The SideWalk backdoor gets a Linux variant
SideWalk
2022-09-14KISAKISA
TTPs#7: Analysis on Lateral Movement Strategy Using SMB/Admin Share