Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2024-12-09SOC PrimeVeronika Telychko
UAC-0185 aka UNC4221 Attack Detection: Hackers Target the Ukrainian Defense Forces and Military-Industrial Complex
UAC-0185
2024-12-08DataBreaches.netDissent
Is KillSec3 Trying to Extort Victims Using Publicly Leaked Data?
2024-12-07Cert-UACert-UA
Targeted cyberattacks UAC-0185 in relation to the Defense Forces and enterprises of defense systems of Ukraine (CRT-UA#12414)
UAC-0185
2024-12-06OALabsSergei Frankoff
CryptBot Evolution Tracking the many iterations of this stealer
CryptBot
2024-12-06Github (VenzoV)VenzoV
Shellcode Loader Delivering XWorm
XWorm
2024-12-05Recorded FutureInsikt Group
BlueAlpha Abuses Cloudflare Tunneling Service for GammaDrop Staging Infrastructure
2024-12-05Trend MicroDaniel Lunghi, Joseph Chen
MOONSHINE Exploit Kit and DarkNimbus Backdoor Enabling Earth Minotaur’s Multi-Platform Attacks
2024-12-05LinkedIn (Idan Tarab)Idan Tarab
The Diplomatic Deception: Patchwork’s Use of Fake U.S. Embassy Alerts in Cyber Espionage
2024-12-05Orange CyberdefenseAlexandre Matousek, Marine PICHON
Edam Dropper
Edam Emmenhtal
2024-12-04Rapid7Tyler McGraw
Black Basta Ransomware Campaign Drops Zbot, DarkGate, and Custom Malware
Black Basta Cobalt Strike DarkGate SystemBC Zloader
2024-12-04LumenBlack Lotus Labs, Danny Adamitis, Ryan English
Snowblind: The Invisible Hand of Secret Blizzard
Crimson RAT TwoDash
2024-12-04MicrosoftMicrosoft Threat Intelligence
Frequent freeloader part I: Secret Blizzard compromising Storm-0156 infrastructure for espionage
Crimson RAT MiniPocket TwoDash Wainscot Operation C-Major Storm-0473
2024-12-04CleafyAlessandro Strino, Federico Valentini, Simone Mattia
DroidBot: Insights from a new Turkish MaaS fraud operation
DroidBot
2024-12-03cyjaxAdam Price
Take Me Down to Funksec Town: Funksec Ransomware DLS Emergence
FunkSec
2024-12-03Hunt.ioHunt.io
Rare Watermark Links Cobalt Strike 4.10 Team Servers to Ongoing Suspicious Activity
Cobalt Strike
2024-12-03Check Point ResearchCheck Point Research
Inside Akira Ransomware’s Rust Experiment
Akira
2024-12-03BitSightBitsight TRACE
PROXY.AM Powered by Socks5Systemz Botnet
Socks5 Systemz
2024-12-02Red CanaryRed Canary Intelligence
Storm-1811 exploits RMM tools to drop Black Basta ransomware
UNC4393
2024-12-02TechSpotAlfonso Maruccia
Hacking group claims to have cracked Microsoft's software licensing security on a massive scale
Massgrave
2024-12-02Kaspersky LabsArtem Ushkov
Horns&Hooves campaign delivers NetSupport RAT and BurnsRAT
NetSupportManager RAT RMS