Click here to download all references as Bib-File.
2021-07-02 ⋅ Cisco ⋅ InSideCopy: How this APT continues to evolve its arsenal AllaKore CetaRAT Lilith NjRAT ReverseRAT |
2021-06-16 ⋅ FireEye ⋅ Smoking Out a DARKSIDE Affiliate’s Supply Chain Software Compromise Cobalt Strike SMOKEDHAM |
2021-06-16 ⋅ Mandiant ⋅ Smoking Out a DARKSIDE Affiliate’s Supply Chain Software Compromise Cobalt Strike SMOKEDHAM |
2021-05-13 ⋅ Talos ⋅ Transparent Tribe APT expands its Windows malware arsenal Crimson RAT Oblique RAT |
2021-05-13 ⋅ ABC News ⋅ 'Don't panic,' Biden tells Americans facing gasoline shortages from pipeline attack DarkSide |
2021-05-04 ⋅ Red Canary ⋅ Transferring leverage in a ransomware attack |
2021-04-29 ⋅ FireEye ⋅ UNC2447 SOMBRAT and FIVEHANDS Ransomware: A Sophisticated Financial Threat Cobalt Strike FiveHands HelloKitty |
2021-04-09 ⋅ Microsoft ⋅ Investigating a unique “form” of email delivery for IcedID malware IcedID |
2021-04-07 ⋅ Medium sixdub ⋅ Using Kaitai Struct to Parse Cobalt Strike Beacon Configs Cobalt Strike |
2021-04-01 ⋅ Microsoft ⋅ Automating threat actor tracking: Understanding attacker behavior for intelligence and contextual alerting |
2020-12-18 ⋅ Elastic ⋅ Combining supervised and unsupervised machine learning for DGA detection SUNBURST |
2020-12-16 ⋅ Lookout ⋅ Lookout Discovers New Spyware Used by Sextortionists to Blackmail iOS and Android Users goontact |
2020-11-12 ⋅ BrightTALK (FireEye) ⋅ Living Off The Land on a Private Island: An Overview of UNC1945 |
2020-11-02 ⋅ FireEye ⋅ Live off the Land? How About Bringing Your Own Island? An Overview of UNC1945 SLAPSTICK STEELCORGI |
2020-06-12 ⋅ SUCURI ⋅ What is the Gibberish Hack? |
2019-07-23 ⋅ Gigamon ⋅ ABADBABE 8BADF00D: Discovering BADHATCH and a Detailed Look at FIN8’s Tooling PoSlurp Powersniff |
2019-07-23 ⋅ Gigamon ⋅ ABADBABE 8BADF00D: Discovering BADHATCH and a Detailed Look at FIN8’s Tooling BADHATCH |
2018-12-17 ⋅ Twitter (@MJDutch) ⋅ Tweet on APT39 OilRig |
2018-08-16 ⋅ Recorded Future ⋅ Chinese Cyberespionage Originating From Tsinghua University Infrastructure ext4 RedAlpha |
2018-08-16 ⋅ Recorded Future ⋅ Chinese Cyberespionage Originating From Tsinghua University Infrastructure ext4 |