Click here to download all references as Bib-File.•
2021-01-12
⋅
Minerva Labs
⋅
Slamming The Backdoor On BazarLoader BazarBackdoor |
2021-01-11
⋅
Twitter (@dk_samper)
⋅
Tweet on Initial access of Avaddon Ransomware group from an IR engagement Avaddon |
2021-01-11
⋅
ESET Research
⋅
Operation Spalax: Targeted malware attacks in Colombia Agent Tesla AsyncRAT NjRAT Remcos |
2021-01-11
⋅
Reuters
⋅
Exclusive: FBI probes Russian-linked postcard sent to FireEye CEO after cybersecurity firm uncovered hack - sources |
2021-01-11
⋅
Kaspersky Labs
⋅
Sunburst backdoor – code overlaps with Kazuar Kazuar SUNBURST |
2021-01-11
⋅
Kaspersky Labs
⋅
Sunburst backdoor – code overlaps with Kazuar Kazuar SUNBURST |
2021-01-11
⋅
Kaspersky Labs
⋅
Sunburst backdoor – code overlaps with Kazuar Kazuar SUNBURST |
2021-01-09
⋅
Connor McGarr's Blog
⋅
Malware Development: Leveraging Beacon Object Files for Remote Process Injection via Thread Hijacking Cobalt Strike |
2021-01-09
⋅
Github (f0wl)
⋅
ezuri_unpack |
2021-01-08
⋅
Zscaler
⋅
Ransomware Delivered Using RDP Brute-Force Attack Dharma |
2021-01-08
⋅
Zscaler
⋅
Ransomware Delivered Using RDP Brute-Force Attack Dharma |
2021-01-08
⋅
Reaqta
⋅
Leonardo S.p.A. Data Breach Analysis |
2021-01-08
⋅
US-CERT
⋅
Alert (AA21-008A): Detecting Post-Compromise Threat Activity in Microsoft Cloud Environments SUNBURST SUPERNOVA |
2021-01-07
⋅
TRUESEC
⋅
Avoiding supply-chain attacks similar to SolarWinds Orion’s (SUNBURST) SUNBURST |
2021-01-07
⋅
Symantec
⋅
SolarWinds: How a Rare DGA Helped Attacker Communications Fly Under the Radar SUNBURST |
2021-01-07
⋅
Palo Alto Networks Unit 42
⋅
TA551: Email Attack Campaign Switches from Valak to IcedID IcedID |
2021-01-07
⋅
Twitter (@campuscodi)
⋅
Tweet on London's Hackney Council attacked by Pysa/Mespinoza ransomware Mespinoza |
2021-01-06
⋅
Bleeping Computer
⋅
Hackers start exploiting the new backdoor in Zyxel devices |
2021-01-06
⋅
Trend Micro
⋅
Expanding Range and Improving Speed: A RansomExx Approach RansomEXX |
2021-01-06
⋅
DomainTools
⋅
Holiday Bazar: Tracking a TrickBot-Related Ransomware Incident BazarBackdoor TrickBot |