Click here to download all references as Bib-File.•
2023-04-07
⋅
Microsoft
⋅
MERCURY and DEV-1084: Destructive attack on hybrid environment DarkBit Storm-1084 |
2023-03-30
⋅
eSentire
⋅
eSentire Threat Intelligence Malware Analysis: BatLoader BATLOADER Cobalt Strike ISFB SystemBC Vidar |
2023-03-15
⋅
Microsoft
⋅
A year of Russian hybrid warfare in Ukraine CaddyWiper DesertBlade DoubleZero HermeticWiper INDUSTROYER2 IsaacWiper PartyTicket SwiftSlicer WhisperGate |
2023-03-13
⋅
Microsoft
⋅
DEV-1101 enables high-volume AiTM campaigns with open-source phishing kit |
2023-03-08
⋅
Malwarebytes
⋅
Ransomware review: March 2023 Vendetta |
2023-02-27
⋅
PRODAFT Threat Intelligence
⋅
RIG Exploit Kit: In-Depth Analysis Dridex IcedID ISFB PureCrypter Raccoon RecordBreaker RedLine Stealer Royal Ransom Silence SmokeLoader Zloader |
2023-02-02
⋅
YouTube (SLEUTHCON)
⋅
Lions, Tigers, and Infostealers - Oh my! RecordBreaker RedLine Stealer Vidar |
2022-12-21
⋅
Microsoft
⋅
Microsoft research uncovers new Zerobot capabilities ZeroBot SparkRAT |
2022-12-15
⋅
Microsoft
⋅
MCCrash: Cross-platform DDoS botnet targets private Minecraft servers DEV-1028 |
2022-12-06
⋅
⋅
360 Threat Intelligence Center
⋅
Analysis of suspected APT-C-56 (Transparent Tribe) attacks against terrorism AhMyth Meterpreter SpyNote AsyncRAT |
2022-12-02
⋅
Avast Decoded
⋅
Hitching a ride with Mustang Panda PlugX |
2022-11-30
⋅
⋅
Qianxin Threat Intelligence Center
⋅
Analysis of APT29's attack activities against Italy Unidentified 098 (APT29 Slack Downloader) |
2022-11-17
⋅
Microsoft
⋅
DEV-0569 finds new ways to deliver Royal ransomware, various payloads Royal Ransom DEV-0569 |
2022-10-27
⋅
Microsoft
⋅
Raspberry Robin worm part of larger ecosystem facilitating pre-ransomware activity FAKEUPDATES BumbleBee Clop Fauppod Raspberry Robin Roshtyak Silence DEV-0950 Mustard Tempest |
2022-10-27
⋅
Microsoft
⋅
Raspberry Robin worm part of larger ecosystem facilitating pre-ransomware activity FAKEUPDATES BumbleBee Fauppod PhotoLoader Raspberry Robin Roshtyak |
2022-10-25
⋅
Microsoft
⋅
DEV-0832 (Vice Society) opportunistic ransomware campaigns impacting US education sector BlackCat Mount Locker Zeppelin Vanilla Tempest |
2022-10-22
⋅
Microsoft
⋅
DEV-0952 deploys Daixin ransomware at hospitals |
2022-10-14
⋅
Microsoft
⋅
New “Prestige” ransomware impacts organizations in Ukraine and Poland Prestige |
2022-10-10
⋅
RiskIQ
⋅
DEV-0832 Leverages Commodity Tools in Opportunistic Ransomware Campaigns BlackCat Mount Locker SystemBC Zeppelin |
2022-10-05
⋅
Microsoft
⋅
Detecting and preventing LSASS credential dumping attacks |