Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2021-07-02MalwareBookReportsmuzi
Skip the Middleman: Dridex Document to Cobalt Strike
Cobalt Strike Dridex
2021-07-02Group-IBGroup-IB
The Brothers Grim - The reversing tale of GrimAgent malware used by Ryuk
GRIMAGENT
2021-07-02The RecordCatalin Cimpanu
REvil ransomware gang executes supply chain attack via malicious Kaseya update
REvil
2021-07-02The RecordCatalin Cimpanu
TrickBot: New attacks see the botnet deploy new banking module, new ransomware
TrickBot
2021-07-02Group-IBAlbert Priego
The Brothers Grim - The reversing tale of GrimAgent malware used by Ryuk
GRIMAGENT
2021-07-01Avast DecodedIgor Morgenstern, Jan Vojtěšek, Luigino Camastra
Backdoored Client from Mongolian CA MonPass
Cobalt Strike Earth Lusca
2021-07-01Avast DecodedIgor Morgenstern, Jan Vojtěšek, Luigino Camastra
Backdoored Client from Mongolian CA MonPass
Cobalt Strike FishMaster
2021-07-01Check PointCheck Point Research
IndigoZebra APT continues to attack Central Asia with evolving tools
BoxCaon xCaon IndigoZebra
2021-07-01Anheng Threat Intelligence CenterAnheng Threat Intelligence Center
Suspected HADES organization launched an attack on Ukraine with military themes
2021-07-01Quick HealAyush Puri
WARZONE RAT – Beware Of The Trojan Malware Stealing Data Triggering From Various Office Documents
Ave Maria
2021-07-01Kryptos LogicKryptos Logic Vantage Team
TrickBot and Zeus
TrickBot Zeus
2021-07-01360 netlabAlex.Turing, Chai Linyuan, houliuyang, Hui Wang, Jinye
Mirai_ptea Botnet is Exploiting Undisclosed KGUARD DVR Vulnerability
Mirai
2021-07-01Dr.WebDr.Web
Android trojans steal Facebook users’ logins and passwords
2021-07-01CISA, FBI, NCSC UK, NSA
Russian GRU (APT28) Conducting Global Brute Force Campaign to Compromise Enterprise and Cloud Environments
reGeorg
2021-07-01The RecordCatalin Cimpanu
Mongolian certificate authority hacked eight times, compromised with malware
Cobalt Strike
2021-07-01BleepingComputerIonut Ilascu
Babuk ransomware is back, uses new version on corporate networks
Babuk
2021-06-30synthesis.to blogTim Blazytko
Automation in Reverse Engineering: String Decryption
Mirai
2021-06-30BleepingComputerLawrence Abrams
Leaked Babuk Locker ransomware builder used in new attacks
Babuk
2021-06-30RiskIQJennifer Grob, Jordan Herman
Bulletproof Hosting Services: Investigating Media Land LLC
2021-06-30GuardicoreLiad Mordekoviz, Ophir Harpaz
SMB Worm “Indexsinas” Uses Lateral Movement to Infect Whole Networks