Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2023-03-24Kaspersky LabsKaspersky Lab ICS CERT
APT attacks on industrial organizations in H2 2022
Earth Longzhi Storm-0530 UNC3890
2023-03-24MicrosoftMicrosoft Incident Response
Guidance for investigating attacks using CVE-2023-23397
2023-03-24loginsoftSaharsh Agrawal
Aurora: The Dark Dawn and its Menacing Effects
Aurora Stealer
2023-03-24cocomelonccocomelonc
Malware AV/VM evasion - part 14: encrypt/decrypt payload via A5/1. Bypass Kaspersky AV. Simple C++ example.
2023-03-24Lab52peko
Bypassing Qakbot Anti-Analysis
QakBot
2023-03-23cybleCyble
Cinoshi Project and the Dark Side of Free MaaS
Cinoshi
2023-03-23MandiantJosh Fleischer, Rufus Brown, Ryan Tomcik
UNC961 in the Multiverse of Mandiant: Three Encounters with a Financially Motivated Threat Actor
HOLERUN LIGHTBUNNY Prophet Spider
2023-03-23LogpointAnish Bogati
Emerging Threats: AgentTesla – A Review and Detection Strategies
Agent Tesla
2023-03-23SentinelOneAleksandar Milenkoski, Joey Chen, Juan Andrés Guerrero-Saade, QGroup
Operation Tainted Love | Chinese APTs Target Telcos in New Attacks
mim221
2023-03-23Medium s2wlabBLKSMTH, S2W TALON
Scarcruft Bolsters Arsenal for targeting individual Android devices
RambleOn RokRAT
2023-03-23Red CanaryRed Canary
2023 / 5.0 Threat Dection Report: Techniques, Trend, and Takeaways
2023-03-23AhnLabVanish
Kimsuky group distributes malware disguised as a profile file (GitHub)
2023-03-22Atlantic CouncilSimon Handler
The 5x5—Conflict in Ukraine’s information environment
2023-03-22MandiantDaniel Kapellmann Zafra, Keith Lunden, Nathan Brubaker
We (Did!) Start the Fire: Hacktivists Increasingly Claim Targeting of OT Systems
2023-03-22Intel 471Roberto Martinez, Taisiia Garkava
New loader on the bloc - AresLoader
AresLoader
2023-03-22Cisco TalosEdmund Brumaghin, Jaeson Schultz
Emotet Resumes Spam Operations, Switches to OneNote
Emotet
2023-03-21Kaspersky LabsGeorgy Kucherin, Igor Kuznetsov, Leonid Bezvershenko
Bad magic: new APT found in the area of Russo-Ukrainian conflict
PowerMagic CommonMagic RedStinger
2023-03-21ZscalerNaveen Selvan, Sudeep Singh
The Unintentional Leak: A glimpse into the attack vectors of APT37
Chinotto
2023-03-21Twitter (@splinter_code)Antonio Cocomazzi
Tweet on BlackByte ransomware rewrite in C++
BlackByte
2023-03-21Github (rivitna)Andrey Zhdanov
BlackCat v3 Decryptor Scripts
BlackCat BlackCat