Click here to download all references as Bib-File.•
2023-03-23
⋅
SentinelOne
⋅
Operation Tainted Love | Chinese APTs Target Telcos in New Attacks mim221 |
2023-03-16
⋅
SentinelOne
⋅
Winter Vivern | Uncovering a Wave of Global Espionage APERETIF Winter Vivern |
2023-03-13
⋅
SentinelOne
⋅
CatB Ransomware | File Locker Sharpens Its Claws to Steal Data with MSDTC Service DLL Hijacking CatB |
2023-02-16
⋅
SentinelOne
⋅
WIP26 Espionage | Threat Actors Abuse Cloud Infrastructure in Targeted Telco Attacks |
2023-02-15
⋅
SentinelOne
⋅
Recent TZW Campaigns Revealed As Part of GlobeImposter Malware Family GlobeImposter |
2023-02-07
⋅
SentinelOne
⋅
Cl0p Ransomware Targets Linux Systems with Flawed Encryption | Decryptor Available Clop |
2023-01-24
⋅
SentinelOne
⋅
DragonSpark | Attacks Evade Detection with SparkRAT and Golang Source Code Interpretation SparkRAT DragonSpark |
2022-12-01
⋅
SentinelOne
⋅
The Mystery of Metador | Unpicking Mafalda’s Anti-Analysis Techniques Metador |
2022-11-30
⋅
SentinelOne
⋅
RansomEXX Ransomware: In-Depth Analysis, Detection, and Mitigation RansomEXX RansomEXX |
2022-11-07
⋅
SentinelOne
⋅
SocGholish Diversifies and Expands Its Malware Staging Infrastructure to Counter Defenders FAKEUPDATES |
2022-11-03
⋅
SentinelOne
⋅
Black Basta Ransomware | Attacks deploy Custom EDR Evasion Tools tied to FIN7 Threat Actor Black Basta QakBot SocksBot |
2022-10-12
⋅
SentinelOne
⋅
WIP19 Espionage | New Chinese APT Targets IT Service Providers and Telcos With Signed Malware Maggie ScreenCap WIP19 |
2022-09-26
⋅
SentinelOne
⋅
Lazarus ‘Operation In(ter)ception’ Targets macOS Users Dreaming of Jobs in Crypto Interception |
2022-09-22
⋅
SentinelOne
⋅
The Mystery of Metador | An Unattributed Threat Hiding in Telcos, ISPs, and Universities Metador |
2022-09-22
⋅
SentinelOne
⋅
The Mystery of Metador | An Unattributed Threat Hiding in Telcos, ISPs, and Universities |
2022-09-15
⋅
SentinelOne
⋅
From the Front Lines | Slam! Anatomy of a Publicly-Available Ransomware Builder Slam |
2022-08-25
⋅
SentinelOne
⋅
BlueSky Ransomware | AD Lateral Movement, Evasion and Fast Encryption Put Threat on the Radar BlueSky Cobalt Strike JuicyPotato |
2022-08-15
⋅
SentinelOne
⋅
Detecting a Rogue Domain Controller – DCShadow Attack MimiKatz TrickBot |
2022-07-28
⋅
SentinelOne
⋅
Living Off Windows Defender | LockBit Ransomware Sideloads Cobalt Strike Through Microsoft Security Tool Cobalt Strike LockBit |
2022-07-18
⋅
SentinelOne
⋅
From the Front Lines | 8220 Gang Massively Expands Cloud Botnet to 30,000 Infected Hosts Water Sigbin |