Click here to download all references as Bib-File.
2022-07-18 ⋅ Palo Alto Networks Unit 42 ⋅ Nascent Ursa Saint Bot SaintBear |
2022-07-18 ⋅ Palo Alto Networks Unit 42 ⋅ Ruinous Ursa WhisperGate DEV-0586 |
2022-06-17 ⋅ Zscaler ⋅ Resurgence of Voicemail-themed phishing attacks targeting key industry verticals in the US |
2022-06-15 ⋅ AttackIQ ⋅ Attack Graph Emulating the Conti Ransomware Team’s Behaviors BazarBackdoor Conti TrickBot |
2022-06-03 ⋅ AttackIQ ⋅ Attack Graph Response to US CERT AA22-152A: Karakurt Data Extortion Group Cobalt Strike MimiKatz |
2022-04-11 ⋅ Cluster25 ⋅ DPRK-Nexus Adversary Targets South-Korean Individuals In A New Chapter of Kitty Phishing Operation |
2022-04-04 ⋅ Mandiant ⋅ FIN7 Power Hour: Adversary Archaeology and the Evolution of FIN7 Griffon BABYMETAL Carbanak Cobalt Strike JSSLoader Termite |
2022-04 ⋅ Adversarial Threat Report |
2022-03-30 ⋅ Zscaler ⋅ Analysis of BlackGuard - a new info stealer malware being sold in a Russian hacking forum BlackGuard |
2022-03-28 ⋅ InsomniHack 2022 ⋅ Forging golden hammer against Android software protection tools - A deep dive inside anti-reverse & universal bypass with Frida |
2022-03-28 ⋅ Intezer ⋅ New Conversation Hijacking Campaign Delivering IcedID IcedID PhotoLoader |
2022-03-12 ⋅ Arash's Blog ⋅ Analyzing Malware with Hooks, Stomps, and Return-addresses Cobalt Strike |
2022-01-31 ⋅ CyberScoop ⋅ Conversation with a top Ukrainian cyber official: What we know, what we don't, what it means Saint Bot |
2022-01-31 ⋅ CyberArk ⋅ Analyzing Malware with Hooks, Stomps and Return-addresses Cobalt Strike |
2022-01-27 ⋅ SCYTHE ⋅ Adversary Emulation Diavol Ransomware #ThreatThursday Diavol |
2022-01-18 ⋅ Recorded Future ⋅ 2021 Adversary Infrastructure Report BazarBackdoor Cobalt Strike Dridex IcedID QakBot TrickBot |
2021-12-03 ⋅ vmware ⋅ TigerRAT – Advanced Adversaries on the Prowl Tiger RAT |
2021-10-08 ⋅ Virus Bulletin ⋅ Multi-universe of adversary: multiple campaigns of the Lazarus group and their connections Dacls AppleJeus AppleJeus Bankshot BookCodes RAT Dacls DRATzarus LCPDot LPEClient |
2021-09-22 ⋅ Secureworks ⋅ REvil Ransomware Reemerges After Shutdown; Universal Decryptor Released REvil REvil |
2021-09-17 ⋅ CrowdStrike ⋅ Falcon OverWatch Hunts Down Adversaries Where They Hide BazarBackdoor Cobalt Strike |