Click here to download all references as Bib-File.•
| 2021-01-01
⋅
Secureworks
⋅
Threat Profile: GOLD MANSARD Nefilim Nemty GOLD MANSARD |
| 2020-12-17
⋅
NSA
⋅
Detecting Abuse of Authentication Mechanisms |
| 2020-12-16
⋅
Twitter (@0xrb)
⋅
List of domain infrastructure including DGA domain used by UNC2452 SUNBURST |
| 2020-12-07
⋅
NSA
⋅
Russian State-Sponsored Actors Exploiting Vulnerability in VMware® Workspace ONE Access Using Compromised Credentials |
| 2020-08-23
⋅
Github (Insane-Forensics)
⋅
Dispatches from Drovorub: Network Threat Hunting for Russia GRU GTsSS' Malware at Scale |
| 2020-08-14
⋅
NSA
⋅
Drovorub Malware: Fact Sheet & FAQs |
| 2020-08-13
⋅
NSA
⋅
NSA and FBI Expose Russian Previously Undisclosed Malware “Drovorub” in Cybersecurity Advisory |
| 2020-08-11
⋅
FireEye
⋅
COOKIEJAR: Tracking Adversaries With FireEye Endpoint Security’s Logon Tracker Module |
| 2020-05-28
⋅
Wired
⋅
NSA: Russia's Sandworm Hackers Have Hijacked Mail Servers |
| 2019-12-24
⋅
Bleeping Computer
⋅
Maze Ransomware Releases Files Stolen from City of Pensacola Maze |
| 2019-12-11
⋅
Bleeping Computer
⋅
Maze Ransomware Behind Pensacola Cyberattack, $1M Ransom Demand Maze |
| 2019-09-04
⋅
Trend Micro
⋅
Glupteba Campaign Hits Network Routers and Updates C&C Servers with Data from Bitcoin Transactions Glupteba |
| 2019-03-05
⋅
PepperMalware Blog
⋅
Quick Analysis of a Trickbot Sample with NSA's Ghidra SRE Framework TrickBot |
| 2018-12-12
⋅
Kaspersky Labs
⋅
Zero-day in Windows Kernel Transaction Manager (CVE-2018-8611) SandCat |
| 2018-11-12
⋅
ccdcoe
⋅
National Cyber Security Organisation: TURKEY |
| 2018-10-18
⋅
McAfee
⋅
‘Operation Oceansalt’ Attacks South Korea, U.S., and Canada With Source Code From Chinese Hacker Group Oceansalt APT1 |
| 2018-10-17
⋅
‘Operation Oceansalt’ Delivers Wave After Wave APT1 |
| 2018-05-07
⋅
European Association for Secure Transactions
⋅
EAST Publishes European Fraud Update 2-2018 WinPot |
| 2018-03-01
⋅
CrySyS Lab
⋅
Territorial Dispute – NSA’s perspective on APT landscape 9002 RAT Agent.BTZ DuQu EYService Flame FlowerShop Stuxnet Uroburos |
| 2017-11-27
⋅
Blacklake
⋅
WHO WAS THE NSA CONTRACTOR ARRESTED FOR LEAKING THE ‘SHADOW BROKERS’ HACKING TOOLS? The Shadow Brokers |
| 2017-09-07
⋅
HackRead
⋅
New NSA Data Dump: ShadowBrokers Release UNITEDRAKE Malware The Shadow Brokers |
| 2017-05-12
⋅
Emsisoft
⋅
Global WannaCry ransomware outbreak uses known NSA exploits WannaCryptor |
| 2017-04-17
⋅
CSO Online
⋅
New NSA leak may expose its bank spying, Windows exploits The Shadow Brokers |
| 2017-01-01
⋅
Github (rain-1)
⋅
WannaCry|WannaDecrypt0r NSA-Cyberweapon-Powered Ransomware Worm WannaCryptor |
| 2016-11-14
⋅
Proofpoint
⋅
Ransoc Desktop Locking Ransomware Ransacks Local Files and Social Media Profiles Ransoc |
| 2016-10-01
⋅
Vice Motherboard
⋅
‘Shadow Brokers’ Whine That Nobody Is Buying Their Hacked NSA Files The Shadow Brokers |
| 2015-02-16
⋅
Ars Technica
⋅
How “omnipotent” hackers tied to NSA hid for 14 years—and were found at last Equation Group |
| 2012-08-01
⋅
Virus Bulletin
⋅
Inside the ICE IX bot, descendent of Zeus Ice IX |