Click here to download all references as Bib-File.
2022-08-01 ⋅ Twitter (@sekoia_io) ⋅ Tweet on Turla's CyberAzov activity CyberAzov |
2022-07-28 ⋅ Sekoia ⋅ SEKOIA.IO Mid-2022 Ransomware Threat Landscape |
2022-07-22 ⋅ Sekoia ⋅ CALISTO continues its credential harvesting campaign Callisto |
2022-07-18 ⋅ Sekoia ⋅ Ongoing Roaming Mantis smishing campaign targeting France MoqHao |
2022-07-08 ⋅ Sekoia ⋅ Vice Society: a discreet but steady double extortion ransomware group HelloKitty |
2022-07-08 ⋅ Sekoia ⋅ Vice Society: a discreet but steady double extortion ransomware group HelloKitty Zeppelin |
2022-06-29 ⋅ Sekoia ⋅ Raccoon Stealer v2 – Part 2: In-depth analysis Raccoon |
2022-06-28 ⋅ Sekoia ⋅ Raccoon Stealer v2 – Part 1: The return of the dead Raccoon |
2022-06-13 ⋅ Sekoia ⋅ BumbleBee: a new trendy loader for Initial Access Brokers BumbleBee |
2022-05-17 ⋅ Sekoia ⋅ EternityTeam: a new prominent threat group on underground forums Eternity Stealer |
2022-04-07 ⋅ Sekoia ⋅ Mars, a red-hot information stealer Mars Stealer |
2022-02-23 ⋅ Sekoia ⋅ Banana Sulfate infrastructure cluster exposed |
2022-02-17 ⋅ Sekoia ⋅ The story of a ransomware builder: from Thanos to Spook and beyond (Part 1) Hakbit |
2022-01-06 ⋅ Sekoia ⋅ NOBELIUM’s EnvyScout infection chain goes in the registry, targeting embassies Cobalt Strike EnvyScout |
2021-11-10 ⋅ Sekoia ⋅ Walking on APT31 infrastructure footprints Rekoobe Unidentified ELF 004 Cobalt Strike |
2021-08-19 ⋅ Sekoia ⋅ An insider insights into Conti operations – Part two Cobalt Strike Conti |
2021-08-17 ⋅ Sekoia ⋅ An insider insights into Conti operations – Part one Cobalt Strike Conti |
2021-07-08 ⋅ Sekoia ⋅ Kaseya: Another Massive Heist by REvil REvil |
2021-03-11 ⋅ Sekoia ⋅ QNAP worm: who bene |
2019-06-13 ⋅ Sekoia ⋅ Hunting and detecting Cobalt Strike Cobalt Strike |