Click here to download all references as Bib-File.•
2021-09-30
⋅
CrowdStrike
⋅
Hunting for the Confluence Exploitation: When Falcon OverWatch Becomes the First Line of Defense Cobalt Strike |
2021-09-29
⋅
Telsy
⋅
Google Drive abused in document exfiltration operation against Afghanistan |
2021-09-27
⋅
Microsoft
⋅
A guide to combatting human-operated ransomware: Part 2 |
2021-09-26
⋅
Medium BlueteamOps
⋅
Supercharging Bulk DFIR triage with Node-RED, Google’s Log2timeline & Google’s Timesketch |
2021-09-23
⋅
Blackberry
⋅
Threat Thursday: BlackMatter RaaS - Darker Than DarkSide? BlackMatter DarkSide BlackMatter DarkSide |
2021-09-22
⋅
Red Canary
⋅
Intelligence Insights: September 2021 |
2021-09-22
⋅
Secureworks
⋅
REvil Ransomware Reemerges After Shutdown; Universal Decryptor Released REvil REvil |
2021-09-21
⋅
skyblue.team blog
⋅
Scanning VirusTotal's firehose Cobalt Strike |
2021-09-21
⋅
Microsoft
⋅
Catching the big fish: Analyzing a large-scale phishing-as-a-service operation |
2021-09-20
⋅
Chainanalysis
⋅
Chainalysis in Action: OFAC Sanctions Russian Cryptocurrency OTC Suex that Received Over $160 million from Ransomware Attackers, Scammers, Darknet Markets, and Seized Exchange BTC-e |
2021-09-20
⋅
Microsoft
⋅
A guide to combatting human-operated ransomware: Part 1 |
2021-09-17
⋅
CrowdStrike
⋅
Falcon OverWatch Hunts Down Adversaries Where They Hide BazarBackdoor Cobalt Strike |
2021-09-16
⋅
Blackberry
⋅
Threat Thursday: NetWire RAT is Coming Down the Line NetWire RC |
2021-09-15
⋅
Microsoft
⋅
Analyzing attacks that exploit the CVE-2021-40444 MSHTML vulnerability EXOTIC LILY |
2021-09-15
⋅
CrowdStrike
⋅
Shining a Light on DarkOxide |
2021-09-15
⋅
Microsoft
⋅
Analyzing attacks that exploit the CVE-2021-40444 MSHTML vulnerability Cobalt Strike |
2021-09-14
⋅
Cado Security
⋅
TeamTNT Script Employed to Grab AWS Credentials TeamTNT Tsunami |
2021-09-14
⋅
CrowdStrike
⋅
Big Game Hunting TTPs Continue to Shift After DarkSide Pipeline Attack BlackMatter DarkSide REvil Avaddon BlackMatter Clop Conti CryptoLocker DarkSide DoppelPaymer Hades REvil |
2021-09-14
⋅
ZecOps
⋅
The Recent iOS 0-Click, CVE-2021-30860, Sounds Familiar. An Unreleased Write-up: One Year Later Chrysaor |
2021-09-09
⋅
Blackberry
⋅
Threat Thursday: Get Your Paws Off My Data, Raccoon Infostealer Raccoon |