Click here to download all references as Bib-File.•
2024-06-06
⋅
kienmanowar Blog
⋅
[QuickNote] DarkGate – Make AutoIt Great Again DarkGate |
2024-06-05
⋅
QuoIntelligence
⋅
European Election Security At Risk: A Detailed Analysis of State-Sponsored, eCrime, and Hacktivist Threats Dragonbridge |
2024-06-05
⋅
⋅
Cert-UA
⋅
UAC-0020 (Vermin) attacks the Defense Forces of Ukraine using the SPECTR SPZ in tandem with the legitimate SyncThing ("SickSync" campaign) (CERT-UA#9934) UAC-0020 |
2024-06-05
⋅
S-RM
⋅
Exmatter malware levels up: S-RM observes new variant with simultaneous remote code execution and data targeting BlackCat BlackMatter Conti ExMatter LockBit REvil Ryuk |
2024-06-05
⋅
Cisco Talos
⋅
DarkGate switches up its tactics with new payload, email templates DarkGate |
2024-06-04
⋅
Aquasec
⋅
Muhstik Malware Targets Message Queuing Services Applications Tsunami |
2024-06-04
⋅
⋅
Cert-UA
⋅
UAC-0200: Targeted cyberattacks using DarkCrystal RAT and Signal as a trusted distribution vehicle (CERT-UA#9918) DCRat |
2024-06-03
⋅
Sekoia
⋅
PikaBot: a Guide to its Deep Secrets and Operations Pikabot |
2024-05-30
⋅
Europol
⋅
Largest ever operation against botnets hits dropper malware ecosystem BumbleBee IcedID SmokeLoader SystemBC TrickBot |
2024-05-30
⋅
circleid
⋅
A DNS Investigation of the Phobos Ransomware 8Base Attack 8Base Phobos |
2024-05-29
⋅
eSentire
⋅
Fake Browser Updates delivering BitRAT and Lumma Stealer BitRAT Lumma Stealer |
2024-05-28
⋅
Reliaquest
⋅
BlackSuit Attack Analysis BlackSuit |
2024-05-26
⋅
ZW01f
⋅
QakBOT v5 Deep Malware Analysis QakBot |
2024-05-23
⋅
Palo Alto Networks Unit 42
⋅
Operation Diplomatic Specter: An Active Chinese Cyberespionage Campaign Leverages Rare Tool Set to Target Governmental Entities in the Middle East, Africa and Asia Agent Racoon CHINACHOPPER Ghost RAT JuicyPotato MimiKatz Ntospy PlugX SweetSpecter TunnelSpecter |
2024-05-22
⋅
Deep Dive Into Unfading Sea Haze: A New Threat Actor in the South China Sea SilentGh0st |
2024-05-21
⋅
Yoroi
⋅
Uncovering an undetected KeyPlug implant attacking industries in Italy KEYPLUG |
2024-05-21
⋅
Elastic
⋅
Invisible miners: unveiling GHOSTENGINE’s crypto mining operations win.ghostengine |
2024-05-21
⋅
Twitter (@embee_research)
⋅
Tweets on decoding a Latrodectus loader Latrodectus |
2024-05-16
⋅
Elastic
⋅
Spring Cleaning with LATRODECTUS: A Potential Replacement for ICEDID IcedID Latrodectus |
2024-05-16
⋅
Symantec
⋅
Springtail: New Linux Backdoor Added to Toolkit Gomir Kimsuky |