Click here to download all references as Bib-File.•
2022-05-05
⋅
DomainTools
⋅
A Sticky Situation Part 1: The Pervasive Nature of Credit Card Skimmers |
2022-05-05
⋅
BrightTALK (Mandiant)
⋅
The Sample: Beating the Malware Piñata Jaku |
2022-05-05
⋅
Youtube (Kaspersky)
⋅
New secret stash for "fileless" malware |
2022-05-05
⋅
YouTube (The Vertex Project)
⋅
Contileaks: Identifying, Extracting, & Modeling Bitcoin Addresses Conti |
2022-05-05
⋅
Elastic
⋅
BLISTER Loader Blister |
2022-05-05
⋅
Github (muha2xmad)
⋅
Analysis of MS Word to drop Remcos RAT | VBA extraction and analysis | IoCs Remcos |
2022-05-05
⋅
Malwarebytes Labs
⋅
Nigerian Tesla: 419 scammer gone malware distributor unmasked Agent Tesla |
2022-05-05
⋅
Blackberry
⋅
Threat Thursday: ZingoStealer – The Cost of “Free” ZingoStealer |
2022-05-05
⋅
Troopers Conference
⋅
Tinker Telco Soldier Spy (to be given 2022-06-27) BPFDoor GALLIUM |
2022-05-05
⋅
Red Canary
⋅
Raspberry Robin gets the worm early Raspberry Robin |
2022-05-05
⋅
YouTube (Chris Greer)
⋅
MALWARE Analysis with Wireshark // TRICKBOT Infection TrickBot |
2022-05-05
⋅
Trend Micro
⋅
NetDooka Framework Distributed via PrivateLoader Malware as Part of Pay-Per-Install Service NetDooka PrivateLoader |
2022-05-05
⋅
Intel 471
⋅
Cybercrime loves company: Conti cooperated with other ransomware gangs LockBit Maze RagnarLocker Ryuk |
2022-05-05
⋅
NCC Group
⋅
North Korea’s Lazarus: their initial access trade-craft using social media and social engineering LCPDot |
2022-05-04
⋅
Cyware
⋅
Chinese Naikon Group Back with New Espionage Attack APT30 Naikon |
2022-05-04
⋅
Kaspersky
⋅
A new secret stash for “fileless” malware Cobalt Strike |
2022-05-04
⋅
Cybereason
⋅
Operation CuckooBees: Deep-Dive into Stealthy Winnti Techniques PRIVATELOG Spyder STASHLOG Winnti |
2022-05-04
⋅
Twitter (@felixw3000)
⋅
Twitter Thread with info on infection chain with IcedId, Cobalt Strike, and Hidden VNC. Cobalt Strike IcedID PhotoLoader |
2022-05-04
⋅
F-Secure
⋅
Scheduled Task Tampering |
2022-05-04
⋅
HP
⋅
Tips for Automating IOC Extraction from GootLoader, a Changing JavaScript Malware GootLoader |