Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2022-02-04Bleeping ComputerAx Sharma
News Corp discloses hack from "persistent" nation state cyber attacks
2022-02-02CiscoAsheer Malhotra, Vitor Ventura
Arid Viper APT targets Palestine with new wave of politically themed phishing attacks, malware
Micropsia
2022-01-31CiscoAsheer Malhotra, Vitor Ventura
Iranian APT MuddyWater targets Turkish users via malicious PDFs, executables
2022-01-26BitdefenderBitdefender
New FluBot and TeaBot Global Malware Campaigns Discovered
Anatsa FluBot
2022-01-25SANS ISCBrad Duncan
Emotet Stops Using 0.0.0.0 in Spambot Traffic
Emotet
2022-01-24Check Point ResearchDikla Barda, Oded Vanunu, Romain Zaikin
Scammers are creating new fraudulent Crypto Tokens and misconfiguring smart contract’s to steal funds
2022-01-20blog.rootshell.beXavier Mertens
[SANS ISC] RedLine Stealer Delivered Through FTP
RedLine Stealer
2022-01-20SANS ISC InfoSec ForumsXavier Mertens
RedLine Stealer Delivered Through FTP
RedLine Stealer
2022-01-12Twitter (MalwareHunterTeam)MalwareHunterTeam
Tweet with original discovery of VajraSpy
VajraSpy
2022-01-12CiscoChetan Raghuprasad, Vanja Svajcer
Nanocore, Netwire and AsyncRAT spreading campaign uses public cloud infrastructure
AsyncRAT Nanocore RAT NetWire RC
2021-12-03SANS ISC InfoSec ForumsBrad Duncan
TA551 (Shathak) pushes IcedID (Bokbot)
IcedID
2021-12-02CiscoTiago Pereira
Magnat campaigns use malvertising to deliver information stealer, backdoor and malicious Chrome extension
Azorult RedLine Stealer
2021-11-18CiscoJosh Pyorre
BlackMatter, LockBit, and THOR
BlackMatter LockBit PlugX
2021-11-16CiscoAsheer Malhotra, Chetan Raghuprasad, Vanja Svajcer
Attackers use domain fronting technique to target Myanmar with Cobalt Strike
Cobalt Strike
2021-11-10Twitter (@ESETresearch)ESET Research
Tweet on a discovery of a trojanized IDA Pro installer, distributed by the LABYRINTH CHOLLIMA group.
2021-11-10Cisco TalosAsheer Malhotra, Jungsoo An, Kendall McKay
North Korean attackers use malicious blogs to deliver malware to high-profile South Korean targets
GoldDragon
2021-11-10RandoriRandori Attack Team
Zero-Day Disclosure: Palo Alto Networks GlobalProtect VPN CVE-2021-3064
2021-11-09Cisco TalosClaudio Bozzato, Lilith Wyatt
Cisco Talos finds 10 vulnerabilities in Azure Sphere’s Linux kernel, Security Monitor and Pluton
2021-11-03Cisco TalosCaitlin Huey, Chetan Raghuprasad, Vanja Svajcer
Microsoft Exchange vulnerabilities exploited once again for ransomware, this time with Babuk
Babuk CHINACHOPPER
2021-11-02GoSecureLilly Chalupowski
New Malware “Gameloader” in Discord Malspam Campaign Identified by GoSecure Titan Labs