Click here to download all references as Bib-File.•
2021-12-15
⋅
Mandiant
⋅
No Unaccompanied Miners: Supply Chain Compromises Through Node.js Packages (UNC3379) DanaBot |
2021-12-14
⋅
Recorded Future
⋅
Full Spectrum Detections for 5 Popular Web Shells: Alfa, SharPyShell, Krypton, ASPXSpy, and TWOFACE TwoFace ASPXSpy SharPyShell |
2021-12-14
⋅
Trend Micro
⋅
Collecting In the Dark: Tropic Trooper Targets Transportation and Government ChiserClient Ghost RAT Lilith Quasar RAT xPack APT23 |
2021-12-14
⋅
Gigamon
⋅
Network Security Monitoring Opportunities and Best Practices for Log4j Defense |
2021-12-14
⋅
Recorded Future
⋅
Full Spectrum Detections for 5 Popular Web Shells: Alfa, SharPyShell, Krypton, ASPXSpy, and TWOFACE TwoFace |
2021-12-14
⋅
Cado Security
⋅
Analysis of Novel Khonsari Ransomware Deployed by the Log4Shell Vulnerability Khonsari |
2021-12-14
⋅
Prevailion
⋅
DarkWatchman: A new evolution in fileless techniques DarkWatchman |
2021-12-14
⋅
Kaspersky Labs
⋅
Owowa: the add-on that turns your OWA into a credential stealer and remote access panel Owowa |
2021-12-13
⋅
RiskIQ
⋅
RiskIQ: Connections between Nanocore, Netwire, and AsyncRAT and Vjw0rm dynamic DNS C2 infrastructure AsyncRAT Nanocore RAT NetWire RC Vjw0rm |
2021-12-13
⋅
Cado Security
⋅
Analysis of Initial In The Wild Attacks Exploiting Log4Shell/Log4J/CVE-2021-44228 Kinsing Mirai Tsunami |
2021-12-13
⋅
Trend Micro
⋅
A Look Into Purple Fox’s Server Infrastructure PurpleFox |
2021-12-13
⋅
Zscaler
⋅
Return of Emotet: Malware Analysis Emotet |
2021-12-12
⋅
Cyber And Ramen blog
⋅
More Flagpro, More Problems Flagpro |
2021-12-12
⋅
NCC Group
⋅
Log4Shell: Reconnaissance and post exploitation network detection |
2021-12-12
⋅
Sophos
⋅
Log4Shell Hell: anatomy of an exploit outbreak |
2021-12-11
⋅
Twitter (@vxunderground)
⋅
Tweet on Gomorrah panel source code leak Gomorrah stealer |
2021-12-10
⋅
Dissecting Malware
⋅
BlackCatConf - Static Configuration Extractor for BlackCat Ransomware BlackCat |
2021-12-10
⋅
Medium s2wlab
⋅
BlackCat: New Rust based ransomware borrowing BlackMatter’s configuration BlackCat BlackMatter |
2021-12-10
⋅
CrowdStrike
⋅
Log4j2 Vulnerability “Log4Shell” (CVE-2021-44228) |
2021-12-10
⋅
Accenture
⋅
Karakurt rises from its lair Cobalt Strike Karakurt |