Click here to download all references as Bib-File.•
| 2021-01-18
⋅
tccontre Blog
⋅
Extracting Shellcode in ICEID .PNG Steganography IcedID |
| 2021-01-18
⋅
Bleeping Computer
⋅
IObit forums hacked to spread ransomware to its members DeroHE |
| 2021-01-18
⋅
Bleeping Computer
⋅
IObit forums hacked in widespread DeroHE ransomware attack |
| 2021-01-18
⋅
Cado Security
⋅
Botnet Deploys Cloud and Container Attack Techniques |
| 2021-01-17
⋅
a12d404
⋅
Backdooring MSBuild SUNBURST |
| 2021-01-17
⋅
Twitter (@AltShiftPrtScn)
⋅
Tweet on Conti Ransomware group exploiting FortiGate VPNs to drop in CobaltStrike loaders Cobalt Strike Conti |
| 2021-01-15
⋅
The Hacker News
⋅
Researchers Disclose Undocumented Chinese Malware Used in Recent Attacks CROSSWALK |
| 2021-01-15
⋅
Medium Dansec
⋅
Detecting Malicious C2 Activity -SpawnAs & SMB Lateral Movement in CobaltStrike Cobalt Strike |
| 2021-01-15
⋅
GEMINI
⋅
Joker’s Stash, the Largest Carding Marketplace, Shuts Down |
| 2021-01-15
⋅
Symantec
⋅
SolarWinds: Insights into Attacker Command and Control Process SUNBURST |
| 2021-01-15
⋅
Swisscom
⋅
Cracking a Soft Cell is Harder Than You Think Ghost RAT MimiKatz PlugX Poison Ivy Trochilus RAT |
| 2021-01-14
⋅
PTSecurity
⋅
Higaisa or Winnti? APT41 backdoors, old and new Cobalt Strike CROSSWALK FunnySwitch PlugX ShadowPad |
| 2021-01-14
⋅
FBI
⋅
PIN Number 20210114-001: Cyber Criminals Exploit Network Access and Privilege Escalation |
| 2021-01-14
⋅
PTSecurity
⋅
Higaisa or Winnti? APT41 backdoors, old and new FunnySwitch |
| 2021-01-14
⋅
Microsoft
⋅
Increasing resilience against Solorigate and other sophisticated attacks with Microsoft Defender SUNBURST |
| 2021-01-13
⋅
Github (Mave12)
⋅
Github Repository: BlackNET 3.7.0.1 BlackNET RAT |
| 2021-01-13
⋅
⋅
TEAMT5
⋅
年度最慘漏洞!深入探究 Oracle WebLogic CVE-2020-14882 |
| 2021-01-13
⋅
InfoSec Handlers Diary Blog
⋅
Hancitor activity resumes after a hoilday break Hancitor |
| 2021-01-13
⋅
Intezer
⋅
A Rare Look Inside a Cryptojacking Campaign and its Profit |
| 2021-01-13
⋅
US-CERT
⋅
Analysis Report (AR21-013A): Strengthening Security Configurations to Defend Against Attackers Targeting Cloud Services |