Click here to download all references as Bib-File.•
| 2021-09-02
⋅
Twitter (@th3_protoCOL)
⋅
Tweet on Confluence Server exploitation (CVE-2021-26084) in the wild and cobaltsrike activity (mentioned in replies by GaborSzappanos) Cobalt Strike |
| 2021-08-30
⋅
Twitter (@Arkbird_SOLG)
⋅
Tweet on MercurialGrabber MercurialGrabber |
| 2021-08-26
⋅
Twitter (@ViriBack)
⋅
Tweet on Vulturi Stealer and it's c2 panel Vulturi |
| 2021-08-25
⋅
Twitter (@malwrhunterteam)
⋅
Tweet on Hydra-variant with Dutch ransom note Nitro |
| 2021-08-22
⋅
Twitter (@ViriBack)
⋅
Tweet on Colibri Loader and Vertex malware |
| 2021-08-20
⋅
Twitter (@VirITeXplorer)
⋅
Tweet about LockFile attacks in Italy LockFile |
| 2021-08-12
⋅
Twitter (@r3c0nst)
⋅
Tweet on StealBit malware as used by LockBit 2.0 StealBit |
| 2021-08-05
⋅
Twitter (@VK_intel)
⋅
Tweet on Linux variant of BlackMatter BlackMatter |
| 2021-08-05
⋅
Twitter (@AltShiftPrtScn)
⋅
Tweet on Conti ransomware affiliates using AnyDesk, Atera, Splashtop, Remote Utilities and ScreenConnect to maintain network access Conti |
| 2021-08-05
⋅
Twitter (@AltShiftPrtScn)
⋅
Tweet on Lorenz ransomware tricking user into allowing OAuth permissions to "Thunderbird with ExQuilla" for O365 Lorenz |
| 2021-08-05
⋅
⋅
Twitter (@BaoshengbinCumt)
⋅
Attacks on NCGSA, MOITT, MOD, NSCP and SCO in Pakistan NetWire RC |
| 2021-08-03
⋅
Twitter (@sysopfb)
⋅
Tweet on python script to decode the blob from Blackmatter ransomware DarkSide |
| 2021-08-03
⋅
Twitter (@ValthekOn)
⋅
Tweet on blacklisted extensions & names of BlackMatter ransomware making the check against custom hashes values DarkSide |
| 2021-08-03
⋅
Twitter (@sisoma2)
⋅
Python script for recovering the hashes hardcoded in different samples of the BlackMatter ransomware DarkSide |
| 2021-07-30
⋅
Twitter (@Unit42_Intel)
⋅
Tweet on BazarLoader infection leading to cobaltstrike and Powershell script file for PrintNightmare vulnerability BazarBackdoor Cobalt Strike |
| 2021-07-27
⋅
Twitter (@fwosar)
⋅
Tweet on new REvil variant REvil |
| 2021-07-26
⋅
Twitter (@alex_lanstein)
⋅
Tweet on BITTER group widely targeting diplomats in Yangon |
| 2021-07-24
⋅
Twitter (@MsftSecIntel)
⋅
Tweet on attackers increasingly using HTML smuggling in phishing and other email campaigns to deliver Casbaneiro Metamorfo |
| 2021-07-22
⋅
Twitter (@HackSysTeam)
⋅
Tweet on analysis of Pegasus Chrysaor |
| 2021-07-21
⋅
Twitter (@bkMSFT)
⋅
Tweet on an ANSSI report detailing APT31 intrusions in France SoWaT APT31 |