Click here to download all references as Bib-File.•
| 2021-05-25
⋅
lacework
⋅
Taking TeamTNT’s Docker Images Offline |
| 2021-05-21
⋅
⋅
LAC
⋅
Targeted attack by 'Cobalt Strike loader' that exploits Microsoft's digital signature-Attacker group APT41 Cobalt Strike DUSTPAN |
| 2021-05-21
⋅
blackarrow
⋅
Leveraging Microsoft Teams to persist and cover up Cobalt Strike traffic Cobalt Strike |
| 2021-05-20
⋅
lacework
⋅
8220 Gangs Recent use of Custom Miner and Botnet |
| 2021-05-18
⋅
Blackberry
⋅
Strong ARMing with MacOS: Adventures in Cross-Platform Emulation |
| 2021-05-18
⋅
Digital Shadows
⋅
Examining Russian-language Cybercriminal Marketplaces |
| 2021-05-13
⋅
Blackberry
⋅
Threat Thursday: SombRAT — Always Leave Yourself a Backdoor SombRAT |
| 2021-05-12
⋅
NortonLifeLock
⋅
Encrypted Chat Apps Doubling as Illegal Marketplaces |
| 2021-05-07
⋅
Bleeping Computer
⋅
Data leak marketplaces aim to take over the extortion economy Babuk Maze |
| 2021-05-06
⋅
Black Hat
⋅
Threat Hunting in Active Directory Environment |
| 2021-05-06
⋅
Black Hat
⋅
How Did the Adversaries Abusing Bitcoin Blockchain Evade Our Takeover Cerber Pony |
| 2021-05-06
⋅
Blackberry
⋅
Threat Thursday: Dr. REvil Ransomware Strikes Again, Employs Double Extortion Tactics REvil |
| 2021-05-04
⋅
Lacework Labs
⋅
Cpuminer & Friends |
| 2021-04-22
⋅
Sysrv-Hello Expands Infrastructure Sysrv-hello |
| 2021-04-22
⋅
lacework
⋅
Sysrv-Hello Expands Infrastructure Sysrv-hello |
| 2021-04-13
⋅
lacework
⋅
Carbine Loader Cryptojacking Campaign |
| 2021-03-29
⋅
VMWare Carbon Black
⋅
Dridex Reloaded: Analysis of a New Dridex Campaign Dridex |
| 2021-03-25
⋅
VMWare Carbon Black
⋅
Memory Forensics for Virtualized Hosts |
| 2021-03-24
⋅
SophosLabs Uncut
⋅
Black Kingdom ransomware begins appearing on Exchange servers |
| 2021-03-23
⋅
Sophos
⋅
Black Kingdom ransomware begins appearing on Exchange servers BlackKingdom Ransomware |