Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2021-07-02Github (fwosar)Fabian Wosar
REvil configuration dump used in Kaseya attack
REvil
2021-07-02Twitter (@SyscallE)SeAccessCheck
Tweet on Revil dropper used in Kaseya attack
REvil
2021-07-02AhnLabAhnLab ASEC Analysis Team
Dissemination of malicious word documents for 'Korean Political Science and Diplomacy' and 'Biography of Policy Advisor' (kimsuky)
2021-07-02Anchored Narratives on Threat Intelligence and GeopoliticsRJM
Geopolitical nation-state threat actor overview June 2021
2021-07-02The RecordCatalin Cimpanu
REvil ransomware gang executes supply chain attack via malicious Kaseya update
REvil
2021-07-02The RecordCatalin Cimpanu
TrickBot: New attacks see the botnet deploy new banking module, new ransomware
TrickBot
2021-07-01Avast DecodedIgor Morgenstern, Jan Vojtěšek, Luigino Camastra
Backdoored Client from Mongolian CA MonPass
Cobalt Strike Earth Lusca
2021-07-01Avast DecodedIgor Morgenstern, Jan Vojtěšek, Luigino Camastra
Backdoored Client from Mongolian CA MonPass
Cobalt Strike FishMaster
2021-07-01Check PointCheck Point Research
IndigoZebra APT continues to attack Central Asia with evolving tools
BoxCaon xCaon IndigoZebra
2021-07-01Anheng Threat Intelligence CenterAnheng Threat Intelligence Center
Suspected HADES organization launched an attack on Ukraine with military themes
2021-07-01ProofpointBryan Campbell, Selena Larson
Malware Masquerades as Privacy Tool
2021-07-01Dr.WebDr.Web
Android trojans steal Facebook users’ logins and passwords
2021-07-01The RecordCatalin Cimpanu
Mongolian certificate authority hacked eight times, compromised with malware
Cobalt Strike
2021-07-01BleepingComputerIonut Ilascu
Babuk ransomware is back, uses new version on corporate networks
Babuk
2021-06-30BleepingComputerLawrence Abrams
Leaked Babuk Locker ransomware builder used in new attacks
Babuk
2021-06-29YoroiYoroi
The "WayBack” Campaign: a Large Scale Operation Hiding in Plain Sight
2021-06-29Twitter (@IntezerLabs)Intezer
Tweet on unknown elf backdoor based on an open source remote shell named "amcsh"
BioSet
2021-06-29FacebookJessica Romero
Combating E-Commerce Scams and Account Takeover Attacks
2021-06-29AccentureAccenture Security
HADES ransomware operators continue attacks
Cobalt Strike Hades MimiKatz
2021-06-29Silverado Policy AcceleratorAnne Neuberger, Dmitri Alperovitch
Cyber Strategy in the Biden Era: A Conversation with Anne Neuberger