Click here to download all references as Bib-File.
| 2021-07-12 ⋅ Proofpoint ⋅ Operation SpoofedScholars: A Conversation with TA453 |
| 2021-07-01 ⋅ Proofpoint ⋅ Malware Masquerades as Privacy Tool |
| 2021-06-29 ⋅ Proofpoint ⋅ Cobalt Strike: Favorite Tool from APT to Crimeware Cobalt Strike |
| 2021-06-24 ⋅ Proofpoint ⋅ JSSLoader: Recoded and Reloaded JSSLoader |
| 2021-06-17 ⋅ Proofpoint ⋅ New TA402 Molerats Malware Targets Governments in the Middle East Molerat Loader |
| 2021-06-16 ⋅ Proofpoint ⋅ The First Step: Initial Access Leads to Ransomware BazarBackdoor Egregor IcedID Maze QakBot REvil Ryuk TrickBot WastedLocker |
| 2021-06-10 ⋅ Proofpoint ⋅ Ransom DDoS Extortion Actor “Fancy Lazarus” Returns |
| 2021-05-03 ⋅ Proofpoint ⋅ New Variant of Buer Loader Written in Rust Buer |
| 2021-04-27 ⋅ Proofpoint ⋅ FluBot Android Malware Spreading Rapidly Through Europe, May Hit U.S. Soon FluBot |
| 2021-04-15 ⋅ Proofpoint ⋅ Threat Actors Pair Tax-Themed Lures With COVID-19, Healthcare Themes Dridex TrickBot |
| 2021-03-30 ⋅ Proofpoint ⋅ BadBlood: TA453 Targets US and Israeli Medical Research Personnel in Credential Phishing Campaigns |
| 2021-03-24 ⋅ Proofpoint ⋅ OAuth Abuse: Think SolarWinds/Solorigate Campaign with Focus on Cloud Applications |
| 2021-03-18 ⋅ Proofpoint ⋅ Now You See It, Now You Don’t: CopperStealer Performs Widespread Theft CopperStealer SmokeLoader |
| 2021-03-10 ⋅ Proofpoint ⋅ NimzaLoader: TA800’s New Initial Access Malware BazarNimrod Cobalt Strike |
| 2021-02-25 ⋅ Proofpoint ⋅ TA413 Leverages New FriarFox Browser Extension to Target the Gmail Accounts of Global Tibetan Organizations scanbox Sepulcher Lucky Cat |
| 2021-02-16 ⋅ Proofpoint ⋅ Q4 2020 Threat Report: A Quarterly Analysis of Cybersecurity Trends, Tactics and Themes Emotet Ryuk NARWHAL SPIDER TA800 |
| 2021-02-11 ⋅ Proofpoint ⋅ A Baza Valentine’s Day BazarBackdoor |
| 2021-01-26 ⋅ Proofpoint ⋅ New Year, New Version of DanaBot DanaBot |
| 2020-12-08 ⋅ Proofpoint ⋅ Understanding BEC Scams: Supplier Invoicing Fraud |
| 2020-12-07 ⋅ Proofpoint ⋅ Commodity .NET Packers use Embedded Images to Hide Payloads Agent Tesla Loki Password Stealer (PWS) Remcos |