Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2021-09-16Medium ShabarkinPavel Shabarkin
Pointer: Hunting Cobalt Strike globally
Cobalt Strike
2021-09-16BlackberryThe BlackBerry Research & Intelligence Team
Threat Thursday: NetWire RAT is Coming Down the Line
NetWire RC
2021-09-16RiskIQRiskIQ
Untangling the Spider Web: The Curious Connection Between WIZARD SPIDER’s Ransomware Infrastructure and a Windows Zero-Day Exploit
Cobalt Strike Ryuk
2021-09-15MicrosoftMicrosoft 365 Defender Threat Intelligence Team, Microsoft Threat Intelligence Center (MSTIC)
Analyzing attacks that exploit the CVE-2021-40444 MSHTML vulnerability
EXOTIC LILY
2021-09-15Twitter (@ReBensk)Re-ind
Original Tweet on this unidentified Android banking malware targeting South Korea
Unidentified APK 006
2021-09-15CrowdStrikeFalcon OverWatch Team
Shining a Light on DarkOxide
2021-09-15MikroTikMikroTik
Mēris botnet
2021-09-15MicrosoftMicrosoft 365 Defender Threat Intelligence Team, Microsoft Threat Intelligence Center (MSTIC)
Analyzing attacks that exploit the CVE-2021-40444 MSHTML vulnerability
Cobalt Strike
2021-09-15Palo Alto Networks Unit 42Anna Chung, Swetha Balla
Phishing Eager Travelers
Dridex
2021-09-15Trend MicroMickey Jin
Analyzing The ForcedEntry Zero-Click iPhone Exploit Used By Pegasus (CVE-2021-30860)
Chrysaor
2021-09-14TelekomThomas Barabosch
Flubot’s Smishing Campaigns under the Microscope
Anatsa FluBot
2021-09-14NK NewsEthan Jewell, Jeongmin Kim
North Korea-linked account poses as KBS scriptwriter to dupe DPRK watchers
2021-09-14Recorded FutureInsikt Group®
Full-Spectrum Cobalt Strike Detection
Cobalt Strike
2021-09-14CrowdStrikeCrowdStrike Intelligence Team
Big Game Hunting TTPs Continue to Shift After DarkSide Pipeline Attack
BlackMatter DarkSide REvil Avaddon BlackMatter Clop Conti CryptoLocker DarkSide DoppelPaymer Hades REvil
2021-09-14FortinetJohn Simmons
More ProxyShell? Web Shells Lead to ZeroLogon and Application Impersonation Attacks
2021-09-14ZecOpsZecOps Research Team
The Recent iOS 0-Click, CVE-2021-30860, Sounds Familiar. An Unreleased Write-up: One Year Later
Chrysaor
2021-09-14McAfeeChristiaan Beek
Operation ‘Harvest’: A Deep Dive into a Long-term Campaign
MimiKatz PlugX Winnti
2021-09-14cybleCyble
Deep-dive Analysis of S.O.V.A. Android Banking Trojan
S.O.V.A.
2021-09-14Objective-SeePatrick Wardle
OSX.ZuRu: trojanized apps spread malware, via sponsored search results
ZuRu
2021-09-13K7 SecurityLathashree K
Beware of this Lock Screen App