Click here to download all references as Bib-File.
2022-01-18 ⋅ Microsoft ⋅ Evolved phishing: Device registration trick adds to phishers’ toolbox for victims without MFA WhisperGate |
2022-01-15 ⋅ Microsoft ⋅ Destructive malware targeting Ukrainian organizations (DEV-0586) WhisperGate |
2022-01-11 ⋅ Recorded Future ⋅ Combating Human Trafficking With Threat Intelligence |
2022-01-07 ⋅ Malwarebytes ⋅ Patchwork APT caught in its own web BadNews |
2022-01-05 ⋅ ARMOR ⋅ Threat Intelligence Report: The Evolution of Doppel Spider from BitPaymer to Grief Ransomware DoppelPaymer FriedEx |
2021-12-09 ⋅ Microsoft ⋅ A closer look at Qakbot’s latest building blocks (and how to knock them down) QakBot |
2021-12-06 ⋅ Microsoft ⋅ NICKEL targeting government organizations across Latin America and Europe MimiKatz |
2021-12-06 ⋅ Mandiant ⋅ Suspected Russian Activity Targeting Government and Business Entities Around the Globe (UNC2452) Cobalt Strike CryptBot |
2021-12-02 ⋅ Malwarebytes ⋅ SideCopy APT: Connecting lures to victims, payloads to infrastructure SideCopy |
2021-11-24 ⋅ Google ⋅ Threat Horizons Cloud Threat Intelligence November 2021. Issue 1 BlackMatter |
2021-11-19 ⋅ 360 Threat Intelligence Center ⋅ It is suspected that the APT-C-55 organization used the commercial software Web Browser Password Viewer to carry out the attack |
2021-11-18 ⋅ Microsoft ⋅ Iranian targeting of IT sector on the rise MimiKatz ShellClient RAT |
2021-11-18 ⋅ 360 netlab ⋅ The Pitfall of Threat Intelligence Whitelisting: Specter Botnet is 'taking over' Top Legit DNS Domains By Using ClouDNS Service Specter |
2021-11-18 ⋅ PRODAFT Threat Intelligence ⋅ Conti Ransomware Group In-Depth Analysis Conti |
2021-11-16 ⋅ Microsoft ⋅ Evolving trends in Iranian threat actor activity – MSTIC presentation at CyberWarCon 2021 |
2021-11-16 ⋅ Malwarebytes ⋅ TrickBot helps Emotet come back from the dead Emotet TrickBot |
2021-11-11 ⋅ Microsoft ⋅ HTML smuggling surges: Highly evasive loader technique increasingly used in banking malware, targeted attacks AsyncRAT Mekotio NjRAT |
2021-11-10 ⋅ Sekoia ⋅ Walking on APT31 infrastructure footprints Rekoobe Unidentified ELF 004 Cobalt Strike |
2021-11-09 ⋅ Prevailion ⋅ Who are latest targets of cyber group Lyceum? Milan Shark LYCEUM |
2021-11-08 ⋅ Microsoft ⋅ Threat actor DEV-0322 exploiting ZOHO ManageEngine ADSelfService Plus |