Click here to download all references as Bib-File.
2023-10-31 ⋅ Cloudsek ⋅ Phishing in the Oasis: Investigating the 2 year real estate data harvesting campaign targeting the Middle East |
2023-10-31 ⋅ Infoblox ⋅ Prolific Puma: Shadowy Link Shortening Service Enables Cybercrime Prolific Puma |
2023-10-30 ⋅ Checkpoint ⋅ 30TH OCTOBER – THREAT INTELLIGENCE REPORT |
2023-10-27 ⋅ acsense ⋅ A Guide to Scattered Spider Data Breaches POORTRY |
2023-10-27 ⋅ DataBreaches.net ⋅ Hackers escalate: leak 200k CCSD students’ data; claim to still have access to CCSD email system |
2023-10-27 ⋅ Twitter (@embee_research) ⋅ Remcos Downloader Analysis - Manual Deobfuscation of Visual Basic and Powershell Remcos |
2023-10-26 ⋅ ANSSI ⋅ Attack Campaigns of APT28 since 2021 CredoMap DriveOcean Empire Downloader Graphite MimiKatz Mocky LNK reGeorg |
2023-10-26 ⋅ Medium walmartglobaltech ⋅ SmartApeSG NetSupportManager RAT |
2023-10-26 ⋅ Avast Decoded ⋅ Rhysida Ransomware Technical Analysis Rhysida |
2023-10-25 ⋅ SUCURI ⋅ FakeUpdateRU Chrome Update Infection Spreads Trojan Malware FakeUpdateRU |
2023-10-24 ⋅ National Security and Defense Council of Ukraine ⋅ The Surge in SmokeLoader Attacks on Ukrainian Institutions SmokeLoader |
2023-10-24 ⋅ Sentinel LABS ⋅ The Israel-Hamas War | Cyber Domain State-Sponsored Activity of Interest |
2023-10-23 ⋅ Proofpoint ⋅ From Copacabana to Barcelona: The Cross-Continental Threat of Brazilian Banking Malware Grandoreiro |
2023-10-23 ⋅ Twitter (@embee_research) ⋅ Cobalt Strike .VBS Loader - Decoding with Advanced CyberChef and Emulation Cobalt Strike |
2023-10-20 ⋅ Twitter (@embee_research) ⋅ Decoding a Cobalt Strike .hta Loader Using CyberChef and Emulation Cobalt Strike |
2023-10-20 ⋅ Medium walmartglobaltech ⋅ IcedID gets Loaded Unidentified 111 (IcedID Loader) |
2023-10-19 ⋅ Symantec ⋅ Crambus: New Campaign Targets Middle Eastern Government Clipog |
2023-10-18 ⋅ Twitter (@embee_research) ⋅ Ghidra Tutorial - Using Entropy To Locate a Cobalt Strike Decryption Function Cobalt Strike |
2023-10-18 ⋅ Kaspersky Labs ⋅ Updated MATA attacks industrial companies in Eastern Europe Dacls Unidentified 106 |
2023-10-18 ⋅ Microsoft ⋅ Multiple North Korean threat actors exploiting the TeamCity CVE-2023-42793 vulnerability FeedLoad ForestTiger HazyLoad RollSling |