Click here to download all references as Bib-File.
2021-11-18 ⋅ Microsoft ⋅ Iranian targeting of IT sector on the rise MimiKatz ShellClient RAT |
2021-11-16 ⋅ Microsoft ⋅ Evolving trends in Iranian threat actor activity – MSTIC presentation at CyberWarCon 2021 |
2021-11-08 ⋅ Microsoft ⋅ Threat actor DEV-0322 exploiting ZOHO ManageEngine ADSelfService Plus |
2021-10-25 ⋅ Microsoft ⋅ NOBELIUM targeting delegated administrative privileges to facilitate broader attacks |
2021-10-11 ⋅ Microsoft ⋅ Iran-linked DEV-0343 targeting defense, GIS, and maritime sectors |
2021-09-27 ⋅ Microsoft ⋅ FoggyWeb: Targeted NOBELIUM malware leads to persistent backdoor |
2021-09-15 ⋅ Microsoft ⋅ Analyzing attacks that exploit the CVE-2021-40444 MSHTML vulnerability EXOTIC LILY |
2021-09-15 ⋅ Microsoft ⋅ Analyzing attacks that exploit the CVE-2021-40444 MSHTML vulnerability Cobalt Strike |
2021-09-01 ⋅ 360 Threat Intelligence Center ⋅ APT-C-56 (Transparent Tribe) Latest Attack Analysis and Associated Suspected Gorgon Group Attack Analysis Alert Crimson RAT NetWire RC |
2021-08-02 ⋅ 360 Threat Intelligence Center ⋅ Operation Hunting - The latest attack by the CNC (APT-C-48) has been revealed |
2021-07-27 ⋅ 360 Threat Intelligence Center ⋅ Summary of Kimsuky's secret stealing activities in the first half of 2021 |
2021-07-16 ⋅ 360 Threat Intelligence Center ⋅ APT-C-61 attacks against South Asia |
2021-07-15 ⋅ Microsoft ⋅ Protecting customers from a private-sector offensive actor using 0-day exploits and DevilsTongue malware |
2021-07-14 ⋅ Microsoft ⋅ Microsoft delivers comprehensive solution to battle rise in consent phishing emails |
2021-07-13 ⋅ Microsoft ⋅ Microsoft discovers threat actor (DEV-0322) targeting SolarWinds Serv-U software with 0-day exploit |
2021-07-01 ⋅ Anheng Threat Intelligence Center ⋅ Suspected HADES organization launched an attack on Ukraine with military themes |
2021-06-15 ⋅ 360 Threat Intelligence Center ⋅ PJobRAT: Spyware targeting Indian military personnel PjobRAT |
2021-06-14 ⋅ Microsoft ⋅ Behind the scenes of business email compromise: Using cross-domain threat data to disrupt a large BEC campaign |
2021-06-11 ⋅ Tencent ⋅ Tencent Security Report: Purple Fox virus maliciously attacks SQL server and spreads like a worm PurpleFox |
2021-06-01 ⋅ Microsoft ⋅ New sophisticated email-based attack from NOBELIUM Cobalt Strike |