Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2021-07-22Twitter (@HackSysTeam)HackSys Team
Tweet on analysis of Pegasus
Chrysaor
2021-07-21Twitter (@bkMSFT)Ben Koehl
Tweet on an ANSSI report detailing APT31 intrusions in France
SoWaT APT31
2021-07-21Twitter (@billyleonard)Billy Leonard
Tweet on APT31 using a router implant.
SoWaT
2021-07-21Twitter (@AltShiftPrtScn)Peter Mackenzie
Tweet on Conti ransomware actor installing AnyDesk for remote access in victim environment
Conti
2021-07-20Twitter (@alexanderjaeger)alexander jaeger
Tweet on timesketch timeline for Pegasus related activities
Chrysaor
2021-07-18Twitter (@billmarczak)Bill Marczak
Twitter thread with a couple of interesting bits from AmnestyTech's new report on Pegasus
Chrysaor
2021-07-17Twitter (@_icebre4ker_)_icebre4ker_
Tweet: new version of Teabot targeting also Portugal banks
Anatsa
2021-07-16Twitter (@benkow_)Benoît Ancel
Tweet on DeepRAT
DeepRAT
2021-07-16Twitter (@alex_lanstein)Alex Lanstein
Tweet on attacks from UNC2652/NOBELIUM
2021-07-16Twitter (@MBThreatIntel)Malwarebytes Threat Intelligence
Tweet on Magecart skimmer using steganography
magecart
2021-07-15Twitter (@hypen1117)Hypen
Vidar Stealer C&C Server List
Vidar
2021-07-15Twitter (@AffableKraut)Eric Brandel
Tweet on another digital skimmer/magecart script from the "q-logger" threat actor
magecart
2021-07-15Twitter (@ESETresearch)ESET Research
Tweet on FreeBSD targeted with Golang backdoor
2021-07-09Twitter (@SophosLabs)SophosLabs
Tweet on speed at which Kaseya REvil attack was conducted
REvil
2021-07-07Twitter (@resecurity_com)Resecurity
Tweet REvil attack chain used against Kaseya
REvil
2021-07-07Twitter (@C0rk1_H)hyabcd
Tweet on purplefox exploiting PrintNightmare (CVE-2021-34527) vulnerability in cryptocurrency mining campaign
PurpleFox
2021-07-06Twitter (@_alex_il_)Alex Ilgayev
Tweet on REvil ransomware actor using vulnerable defender executable in its infection flow in early may before Kaseya attack
REvil
2021-07-06Twitter (@MBThreatIntel)Malwarebytes Threat Intelligence
Tweet on a malspam campaign that is taking advantage of Kaseya VSA ransomware attack to drop CobaltStrike
Cobalt Strike
2021-07-05Twitter (@R3MRUM)R3MRUM
Twitter thread with additional context on C2 domains found in REvil configuration
REvil
2021-07-05Twitter (@SophosLabs)SophosLabs
Tweet with a REvil ransomware execution demo
REvil