Click here to download all references as Bib-File.•
| 2021-07-30
⋅
cyble
⋅
Aberebot on the Rise: New Banking Trojan Targeting Users Through Phishing Aberebot |
| 2021-07-30
⋅
HP
⋅
Detecting TA551 domains Valak Dridex IcedID ISFB QakBot |
| 2021-07-30
⋅
Twitter (@Unit42_Intel)
⋅
Tweet on BazarLoader infection leading to cobaltstrike and Powershell script file for PrintNightmare vulnerability BazarBackdoor Cobalt Strike |
| 2021-07-30
⋅
Bleeping Computer
⋅
DOJ: SolarWinds hackers breached emails from 27 US Attorneys’ offices |
| 2021-07-30
⋅
RiskIQ
⋅
Bear Tracks: Infrastructure Patterns Lead to More Than 30 Active APT29 C2 Servers elf.wellmess WellMess |
| 2021-07-29
⋅
Microsoft
⋅
When coin miners evolve, Part 2: Hunting down LemonDuck and LemonCat attacks Lemon Duck |
| 2021-07-29
⋅
Kaspersky
⋅
GhostEmperor: Chinese-speaking APT targets high-profile victims using unknown rootkit GhostEmperor |
| 2021-07-29
⋅
Talos Intelligence
⋅
Talos Spotlight: Solarmarker solarmarker |
| 2021-07-29
⋅
Avast
⋅
Magnitude Exploit Kit: Still Alive and Kicking Magniber |
| 2021-07-29
⋅
Recorded Future
⋅
“Beijing One Pass” Employee Benefits Software Exhibits Spyware Characteristics |
| 2021-07-29
⋅
360 Total Security
⋅
“Netfilter Rootkit II ” Continues to Hold WHQL Signatures NetfilterRootkit |
| 2021-07-29
⋅
ENISA
⋅
ENISA Threat Landscape for Supply Chain Attacks |
| 2021-07-29
⋅
Rasta Mouse
⋅
NTLM Relaying via Cobalt Strike Cobalt Strike |
| 2021-07-28
⋅
Threatpost
⋅
BlackMatter & Haron: Evil Ransomware Newborns or Rebirths Haron Ransomware |
| 2021-07-28
⋅
Malwarebytes
⋅
Crimea “manifesto” deploys VBA Rat using double attack vectors |
| 2021-07-28
⋅
Corelight
⋅
Telegram Zeek, you’re my main notice |
| 2021-07-28
⋅
RiskIQ
⋅
Use of XAMPP Web Component to Identify Agent Tesla Infrastructure Agent Tesla |
| 2021-07-28
⋅
KELA
⋅
New Russian-Speaking Forum – A New Place for RaaS? Babuk |
| 2021-07-28
⋅
McAfee
⋅
Babuk: Moving to VM and *nix Systems Before Stepping Away Babuk |
| 2021-07-28
⋅
CISA
⋅
Top Routinely Exploited Vulnerabilities |