Click here to download all references as Bib-File.
2021-08-24 ⋅ CitizenLab ⋅ From Pearl to Pegasus Bahraini Government Hacks Activists with NSO Group Zero-Click iPhone Exploits Chrysaor |
2021-08-19 ⋅ Huntress Labs ⋅ Microsoft Exchange Servers Still Vulnerable to ProxyShell Exploit |
2021-07-27 ⋅ Youtube (SANS Institute) ⋅ SANS Threat Analysis Rundown - Kaseya VSA attack REvil |
2021-07-20 ⋅ Huntress Labs ⋅ Security Researchers’ Hunt to Discover Origins of the Kaseya VSA Mass Ransomware Incident REvil |
2021-07-19 ⋅ Washington Post ⋅ U.S., allies accuse China of hacking Microsoft and condoning other cyberattacks (APT40) |
2021-07-18 ⋅ CitizenLab ⋅ Independent Peer Review of Amnesty International’s Forensic Methods for Identifying Pegasus Spyware Chrysaor |
2021-07-15 ⋅ CitizenLab ⋅ Hooking Candiru Another Mercenary Spyware Vendor Comes into Focus Chainshot |
2021-07-14 ⋅ Medium TowardsDataScience ⋅ Domain Blooms: Identifying Domain Name Themes Targeted By Threat Actors |
2021-07-13 ⋅ YouTube (John Hammond) ⋅ JScript Deobfuscation - More WSHRAT (Malware Analysis) Houdini |
2021-07-06 ⋅ paloalto Networks Unit 42 ⋅ Understanding REvil: The Ransomware Gang Behind the Kaseya Attack Gandcrab REvil |
2021-06-01 ⋅ SpecterOps ⋅ Evadere Classifications |
2021-05-18 ⋅ Sophos ⋅ The Active Adversary Playbook 2021 Cobalt Strike MimiKatz |
2021-05-13 ⋅ DomainTools ⋅ Domain Blooms: Identifying Domain Name Themes Targeted By Threat Actors |
2021-04-22 ⋅ splunk ⋅ SUPERNOVA Redux, with a Generous Portion of Masquerading SUPERNOVA |
2021-04-21 ⋅ splunk ⋅ Monitoring Pulse Connect Secure With Splunk (CISA Emergency Directive 21-03) |
2021-04-05 ⋅ Huntress Labs ⋅ From PowerShell to Payload: An Analysis of Weaponized Malware |
2021-03-26 ⋅ Imperva ⋅ Imperva Observes Hive of Activity Following Hafnium Microsoft Exchange Disclosures CHINACHOPPER |
2021-03-12 ⋅ splunk ⋅ Detecting Microsoft Exchange Vulnerabilities - 0 + 8 Days Later… |
2021-03-09 ⋅ YouTube (John Hammond) ⋅ HAFNIUM - Post-Exploitation Analysis from Microsoft Exchange CHINACHOPPER |
2021-03-03 ⋅ Huntress Labs ⋅ Rapid Response: Mass Exploitation of On-Prem Exchange Servers CHINACHOPPER HAFNIUM |