Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2024-09-19MandiantMark Lechtik, Matan Mimran, Sarah Bock, Stav Shulman
UNC1860 and the Temple of Oats: Iran’s Hidden Hand in Middle Eastern Networks
OATBOAT
2024-09-19MandiantMark Lechtik, Matan Mimran, Sarah Bock, Stav Shulman
UNC1860 and the Temple of Oats: Iran’s Hidden Hand in Middle Eastern Networks
CRYPTOSLAY PipeSnoop TEMPLEDOOR UNC1860
2024-09-19Gen DigitalLuigino Camastra
Evolution of Lazarus ‘FudModule - no longer (stand)alone’
FudModule
2024-09-19Trend MicroCyris Tseng, Philip Chen, Pierre Lee, Sunny Lu, Ted Lee
Earth Baxia Uses Spear-Phishing and GeoServer Exploit to Target APAC
Cobalt Strike Earth Baxia
2024-09-19Trend MicroCyris Tseng, Philip Chen, Pierre Lee, Sunny Lu, Ted Lee
Earth Baxia Uses Spear-Phishing and GeoServer Exploit to Target APAC (IoCs)
Cobalt Strike Earth Baxia
2024-09-18Group-IBNam Le Phuong, Vito Alfano
Storm clouds on the horizon: Resurgence of TeamTNT?
TeamTNT
2024-09-18Twitter (@MsftSecIntel)Microsoft
Tweet about threat actor Vanilla Tempest
INC GootLoader Storm-0494
2024-09-18loginsoftT B L N Shashank Mannar
Medusa Ransomware: Evolving Tactics in Modern Cyber Extortion
MedusaLocker
2024-09-18ASD, CNMF, CSE Canada, FBI, GCSB, NCSC UK, NSA
People’s Republic of China-Linked Actors Compromise Routers and IoT Devices for Botnet Operations
Nosedive
2024-09-18LumenBlack Lotus Labs
Derailing the Raptor Train
Nosedive
2024-09-18U.S. Department of Justice
Court-Authorized Operation Disrupts Worldwide Botnet Used by People’s Republic of China State-Sponsored Hackers
Nosedive
2024-09-18LumenBlack Lotus Labs
Derailing The Raptor Train
Nosedive
2024-09-17NTDCatherine Yang
Charges Against Alleged Chinese Military Hacker Unsealed
2024-09-17MandiantMandiant
An Offer You Can Refuse: UNC2970 Backdoor Deployment Using Trojanized PDF Reader
MISTPEN
2024-09-13Aqua NautilusAssaf Morag
Hadooken Malware Targets Weblogic Applications
Hadooken
2024-09-13Bleeping ComputerBill Toulas
New Linux malware Hadooken targets Oracle WebLogic servers
Hadooken
2024-09-12Dr. WebDr.Web
Void captures over a million Android TV boxes
vo1d
2024-09-12Outpost24KrakenLabs, Lidia López Sanz
Crystal Rans0m: Emerging hybrid ransomware with stealer capabilities
Crystal Rans0m
2024-09-12cocomelonccocomelonc
Malware and cryptography 32: encrypt payload via FEAL-8 algorithm. Simple C example.
2024-09-12Cado SecurityNate Bill, Tara Gould
From Automation to Exploitation: The Growing Misuse of Selenium Grid for Cryptomining and Proxyjacking
perfctl