Click here to download all references as Bib-File.•
| 2021-07-26
⋅
vmware
⋅
Hunting IcedID and unpacking automation with Qiling IcedID |
| 2021-07-26
⋅
SentinelOne
⋅
Detecting XLoader | A macOS ‘Malware-as-a-Service’ Info Stealer and Keylogger Xloader |
| 2021-07-25
⋅
Youtube (AhmedS Kasmani)
⋅
Analysis of Malware from Kaseya/Revil Supply Chain attack. REvil |
| 2021-07-24
⋅
Twitter (@MsftSecIntel)
⋅
Tweet on attackers increasingly using HTML smuggling in phishing and other email campaigns to deliver Casbaneiro Metamorfo |
| 2021-07-24
⋅
0ffset Blog
⋅
Quack Quack: Analysing Qakbot’s Browser Hooking Module – Part 1 QakBot |
| 2021-07-23
⋅
Github (Lastline-Inc)
⋅
YARA rules, IOCs and Scripts for extracting IcedID C2s IcedID |
| 2021-07-22
⋅
⋅
Trend Micro
⋅
Analysis of "[Urgent] Damage report regarding the occurrence of cyber attacks, etc. associated with the Tokyo Olympics.exe" VIGILANT CLEANER |
| 2021-07-22
⋅
Twitter (@HackSysTeam)
⋅
Tweet on analysis of Pegasus Chrysaor |
| 2021-07-22
⋅
⋅
Serviciul Român de Informații
⋅
Cyber attack with PHOBOS ransomware application Phobos |
| 2021-07-22
⋅
Bleeping Computer
⋅
Ransomware gang breached CNA’s network via fake browser update |
| 2021-07-22
⋅
Medium michaelkoczwara
⋅
Cobalt Strike Hunting — simple PCAP and Beacon Analysis Cobalt Strike |
| 2021-07-21
⋅
eSentire
⋅
Notorious Cybercrime Gang, FIN7, Lands Malware in Law Firm Using Fake Legal Complaint Against Jack Daniels’ Owner, Brown-Forman Inc. |
| 2021-07-21
⋅
Check Point
⋅
Top prevalent malware with a thousand campaigns migrates to macOS Xloader |
| 2021-07-21
⋅
Twitter (@AltShiftPrtScn)
⋅
Tweet on Conti ransomware actor installing AnyDesk for remote access in victim environment Conti |
| 2021-07-21
⋅
Youtube (OALabs)
⋅
Warzone RAT Config Extraction With Python and IDA Pro Ave Maria |
| 2021-07-21
⋅
secure.software
⋅
Groundhog day: NPM package caught stealing browser passwords |
| 2021-07-20
⋅
Twitter (@alexanderjaeger)
⋅
Tweet on timesketch timeline for Pegasus related activities Chrysaor |
| 2021-07-20
⋅
⋅
Lazarus organizes social engineering attacks on the cryptocurrency industry |
| 2021-07-20
⋅
Darktrace
⋅
Data exfiltration in Latin America |
| 2021-07-20
⋅
Trend Micro
⋅
Tracking the Activities of TeamTNT: A Closer Look at a Cloud-Focused Malicious Actor Group TeamTNT |