Click here to download all references as Bib-File.•
| 2017-08-25
⋅
Proofpoint
⋅
Operation RAT Cook: Chinese APT actors use fake Game of Thrones leaks as lures 9002 RAT |
| 2017-08-03
⋅
Cisco Talos
⋅
Taking the FIRST look at Crypt0l0cker Crypt0l0cker |
| 2017-07-31
⋅
Proofpoint
⋅
FIN7/Carbanak threat actor unleashes Bateleur JScript backdoor Bateleur FIN7 |
| 2017-07-20
⋅
ESET Research
⋅
Stantinko: A massive adware campaign operating covertly since 2012 Stantinko |
| 2017-07-05
⋅
Cisco Talos
⋅
The MeDoc Connection TeleDoor |
| 2017-06-28
⋅
Comae
⋅
Petya.2017 is a wiper not a ransomware |
| 2017-06-21
⋅
Cisco
⋅
Player 1 Limps Back Into the Ring - Hello again, Locky! Locky |
| 2017-06-01
⋅
Proofpoint
⋅
Microsoft Word Intruder Integrates CVE-2017-0199, Utilized by Cobalt Group to Target Financial Institutions Cobalt |
| 2017-05-19
⋅
Comae
⋅
WannaCry — Decrypting files with WanaKiwi + Demos WannaCryptor |
| 2017-05-14
⋅
Comae
⋅
WannaCry — New Variants Detected! WannaCryptor |
| 2017-05-12
⋅
Comae
⋅
WannaCry — The largest ransom-ware infection in History WannaCryptor |
| 2017-05-03
⋅
FireEye
⋅
To SDB, Or Not To SDB: FIN7 Leveraging Shim Databases for Persistence FIN7 |
| 2017-04-04
⋅
GitHub (matthewdunwoody)
⋅
POSHSPY backdoor code POSHSPY |
| 2017-04-03
⋅
Cisco Talos
⋅
Introducing ROKRAT RokRAT |
| 2017-04-03
⋅
FireEye
⋅
Dissecting One of APT29’s Fileless WMI and PowerShell Backdoors (POSHSPY) POSHSPY APT29 |
| 2017-02-01
⋅
ESET Research
⋅
Read The Manual: A Guide to the RTM Banking Trojan RTM RTM |
| 2016-11-17
⋅
CitizenLab
⋅
It’s Parliamentary - KeyBoy and the targeting of the Tibetan Community KeyBoy |
| 2016-10-07
⋅
FireEye
⋅
Attacking the Hospitality and Gaming Industries: Tracking an Attacker Around the World in 7 Years RawPOS |
| 2016-05-12
⋅
Proofpoint
⋅
Hancitor and Ruckguv Reappear, Updated and With Vawtrak On Deck Hancitor Ruckguv |
| 2016-05-10
⋅
Proofpoint
⋅
Setting Sights On Retail: AbaddonPOS Now Targeting Specific POS Software AbaddonPOS TinyLoader |