Click here to download all references as Bib-File.
2022-02-09 ⋅ CISA ⋅ Alert (AA22-040A) 2021 Trends Show Increased Globalized Threat of Ransomware |
2022-02-09 ⋅ 2021 Trends Show Increased Globalized Threat of Ransomware |
2022-01-11 ⋅ CISA ⋅ Understanding and Mitigating Russian State-Sponsored Cyber Threats to U.S. Critical Infrastructure |
2022-01-11 ⋅ Understanding and Mitigating Russian State- Sponsored Cyber Threats to U.S. Critical Infrastructure |
2021-12-30 ⋅ Cloudsek ⋅ Technical Analysis of Khonsari Ransomware Campaign Exploiting the Log4Shell Vulnerability Khonsari |
2021-12-22 ⋅ CISA ⋅ Alert (AA21-356A) Mitigating Log4Shell and Other Log4j-Related Vulnerabilities |
2021-12-16 ⋅ Check Point Research ⋅ Phorpiex botnet is back with a new Twizt: Hijacking Hundreds of crypto transactions Phorpiex |
2021-12-14 ⋅ Cado Security ⋅ Analysis of Novel Khonsari Ransomware Deployed by the Log4Shell Vulnerability Khonsari |
2021-09-09 ⋅ Medium s2wlab ⋅ Case Analysis of Suncrypt Ransomware Negotiation and Bitcoin Transaction SunCrypt |
2021-09-03 ⋅ FireEye ⋅ PST, Want a Shell? ProxyShell Exploiting Microsoft Exchange Servers CHINACHOPPER HTran |
2021-08-06 ⋅ ESET Research ⋅ IIStealer: A server‑side threat to e‑commerce transactions |
2021-07-01 ⋅ Russian GRU (APT28) Conducting Global Brute Force Campaign to Compromise Enterprise and Cloud Environments reGeorg |
2021-05-12 ⋅ The Record ⋅ Agents raid home of Kansas man seeking info on botnet that infected DOD network PerlBot |
2021-05-07 ⋅ GCHQ ⋅ Further TTPs associated with SVR cyber actors: Use of multiple publicly available exploits and Sliver framework to target organisations globally |
2021-04-19 ⋅ Washington Examiner ⋅ Inside the CIA and NSA disagreement over Russian bounties story |
2021-04-15 ⋅ Russian SVR Targets U.S. and Allied Networks |
2021-01-05 ⋅ Joint Statement by the Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), the Office of the Director of National Intelligence (ODNI), and the National Security Agency (NSA) SUNBURST |
2021 ⋅ Secureworks ⋅ Threat Profile: GOLD MANSARD Nefilim Nemty GOLD MANSARD |
2020-12-17 ⋅ NSA ⋅ Detecting Abuse of Authentication Mechanisms |
2020-12-16 ⋅ Twitter (@0xrb) ⋅ List of domain infrastructure including DGA domain used by UNC2452 SUNBURST |