Click here to download all references as Bib-File.•
| 2021-03-09
⋅
Attivo NETWORKS
⋅
Hafnium – Active Exploitation of Microsoft Exchange and Lateral Movement |
| 2021-03-08
⋅
Symantec
⋅
How Symantec Stops Microsoft Exchange Server Attacks CHINACHOPPER MimiKatz |
| 2021-03-08
⋅
Palo Alto Networks Unit 42
⋅
Attack Chain Overview: Emotet in December 2020 and January 2021 Emotet |
| 2021-03-08
⋅
DeepEnd REsearch
⋅
Renewed SideWinder Activity in South Asia |
| 2021-03-08
⋅
Palo Alto Networks Unit 42
⋅
Analyzing Attacks Against Microsoft Exchange Server With China Chopper Webshells CHINACHOPPER |
| 2021-03-08
⋅
Sentinel LABS
⋅
HelloKitty Ransomware Lacks Stealth, But Still Strikes Home HelloKitty |
| 2021-03-07
⋅
TRUESEC
⋅
Tracking Microsoft Exchange Zero-Day ProxyLogon and HAFNIUM CHINACHOPPER |
| 2021-03-07
⋅
InfoSec Handlers Diary Blog
⋅
PCAPs and Beacons Cobalt Strike |
| 2021-03-07
⋅
The Wall Street Journal
⋅
Russian Disinformation Campaign Aims to Undermine Confidence in Pfizer, Other Covid-19 Vaccines, U.S. Officials Say |
| 2021-03-06
⋅
de Volkskrant
⋅
Russian and Chinese hackers gained access to EMA |
| 2021-03-05
⋅
Malwarebytes
⋅
New steganography attack targets Azerbaijan |
| 2021-03-05
⋅
Sophos
⋅
HAFNIUM: Advice about the new nation-state attack |
| 2021-03-05
⋅
Medium walmartglobaltech
⋅
A look at an Android bot from unpacking to DGA FluBot |
| 2021-03-05
⋅
Blackberry
⋅
ZeroLogon to Ransomware Mailto |
| 2021-03-05
⋅
Microsoft
⋅
Exchange Server IIS dropping web shells and other artifacts HAFNIUM |
| 2021-03-05
⋅
Wired
⋅
Chinese Hacking Spree Hit an ‘Astronomical’ Number of Victims CHINACHOPPER |
| 2021-03-04
⋅
Elastic
⋅
Detection and Response for HAFNIUM Activity HAFNIUM |
| 2021-03-04
⋅
FireEye
⋅
Detection and Response to Exploitation of Microsoft Exchange Zero-Day Vulnerabilities CHINACHOPPER HAFNIUM |
| 2021-03-04
⋅
FireEye
⋅
New SUNSHUTTLE Second-Stage Backdoor Uncovered Targeting U.S.-Based Entity; Possible Connection to UNC2452 UNC2452 |
| 2021-03-04
⋅
WMC Global
⋅
The Compact Campaign |