Click here to download all references as Bib-File.•
| 2021-12-06
⋅
CERT-FR
⋅
Phishing campaigns by the Nobelium intrusion set Cobalt Strike |
| 2021-12-04
⋅
Theta
⋅
Pivoting through malicious infrastructure: from ZoomPortable to Windscribe |
| 2021-12-04
⋅
BleepingComputer
⋅
Malicious KMSPico installers steal your cryptocurrency wallets CryptBot |
| 2021-12-03
⋅
GoSecure
⋅
TrickBot Leverages Zoom Work from Home Interview Malspam, Heaven’s Gate and… Spamhaus? TrickBot |
| 2021-12-03
⋅
HSE
⋅
Conti cyber attack on the HSE Conti |
| 2021-12-03
⋅
Github (rivitna)
⋅
Hive Demo and IoCs Hive Hive |
| 2021-12-03
⋅
Cleafy
⋅
Mobile banking fraud: BRATA strikes again BRATA |
| 2021-12-03
⋅
RiskIQ
⋅
Woo's There? Magecart Targets WooCommerce magecart |
| 2021-12-03
⋅
Trend Micro
⋅
Vulnerabilities Exploited for Monero Mining Malware Delivered via GitHub, Netlify |
| 2021-12-03
⋅
vmware
⋅
TigerRAT – Advanced Adversaries on the Prowl Tiger RAT |
| 2021-12-03
⋅
KrebsOnSecurity
⋅
Who Is the Network Access Broker ‘Babam’? |
| 2021-12-03
⋅
SANS ISC InfoSec Forums
⋅
TA551 (Shathak) pushes IcedID (Bokbot) IcedID |
| 2021-12-02
⋅
FBI
⋅
CU-000156-MW: Indicators of Compromise Associated with Cuba Ransomware Cuba |
| 2021-12-02
⋅
Google
⋅
TAG Bulletin: Q4 2021 |
| 2021-12-02
⋅
Red Canary
⋅
KMSPico and Cryptbot: A spicy combo CryptBot |
| 2021-12-02
⋅
Ankura
⋅
Revix Linux Ransomware REvil |
| 2021-12-02
⋅
CERT-FR
⋅
Phishing Campaigns by the Nobelium Intrusion Set Cobalt Strike |
| 2021-12-02
⋅
CISA
⋅
Alert (AA21-336A): APT Actors Exploiting CVE-2021-44077 in Zoho ManageEngine ServiceDesk Plus KDC Sponge NGLite |
| 2021-12-02
⋅
Cisco
⋅
Magnat campaigns use malvertising to deliver information stealer, backdoor and malicious Chrome extension Azorult RedLine Stealer |
| 2021-12-02
⋅
⋅
AhnLab
⋅
Spreading AgentTesla through more sophisticated malicious PPT Agent Tesla |