Malpedia Library

2020-12-19 ⋅ Yahoo News ⋅ Kim Zetter
Hackers last year conducted a 'dry run' of SolarWinds breach

2020-12-18 ⋅ ⋅ Tagesschau ⋅ Hakan Tanriverdi, Philipp Grüll
Nordkorea in Verdacht: Cyberspionage gegen deutsche Rüstungskonzerne

2020-12-18 ⋅ Trend Micro ⋅ Junestherry Salvador, Matthew Camacho, Raphael Centeno
Negasteal Uses Hastebin for Fileless Delivery of Crysis Ransomware
Agent Tesla Dharma

2020-12-18 ⋅ Microsoft ⋅ Alex Weinert
Protecting Microsoft 365 from on-premises attacks

2020-12-18 ⋅ THE DISPATCH ⋅ Jack Goldsmith
Self-Delusion on the Russia Hack

2020-12-18 ⋅ Sentinel LABS ⋅ James Haughom
SolarWinds SUNBURST Backdoor: Inside the APT Campaign
SUNBURST

2020-12-18 ⋅ Microsoft ⋅ Microsoft 365 Defender Research Team, Microsoft Threat Intelligence Center (MSTIC)
Analyzing Solorigate, the compromised DLL file that started a sophisticated cyberattack, and how Microsoft Defender helps protect customers
SUNBURST SUPERNOVA TEARDROP UNC2452

2020-12-18 ⋅ Intel 471 ⋅ Intel 471
TA505’s modified loader means new attack campaign could be coming
Get2

2020-12-18 ⋅ ThreatConnect ⋅ ThreatConnect
Tracking Sunburst-Related Activity with ThreatConnect Dashboards
SUNBURST

2020-12-18 ⋅ Elastic ⋅ Camilla Montonen, Justin Ibarra
Combining supervised and unsupervised machine learning for DGA detection
SUNBURST

2020-12-18 ⋅ Reuters ⋅ Joseph Menn
Exclusive: Microsoft breached in suspected Russian hack using SolarWinds - sources

2020-12-17 ⋅ Prevasio ⋅ Sergei Shevchenko
Sunburst Backdoor, Part II: DGA & The List of Victims
SUNBURST

2020-12-17 ⋅ Menlo Security ⋅ Krishnan Subramanian
Increase In Attack: SocGholish
FAKEUPDATES

2020-12-17 ⋅ Wired ⋅ Erica Borghard, Jacquelyn Schneider
Russia's Hack Wasn't Cyberwar. That Complicates US Strategy

2020-12-17 ⋅ The Intercept ⋅ Jordan Smith, Mara Hvistendahl, Micah Lee
Russian Hackers Have Been Inside Austin City Network for Months