Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2020-12-16PastebinAnonymous
Paste of subdomain & DGA domain names used in SolarWinds attack
SUNBURST UNC2452
2020-12-16CrowdStrikeDavid Rojas, Mark Robinson
Hiding in Plain Sight: Remediating “Hidden” Malware with Real Time Response
Andromeda
2020-12-16360 Threat Intelligence CenterAdvanced Threat Institute
旺刺组织(APT-C-47)使用ClickOnce技术的攻击活动披露
2020-12-16Cyborg SecurityJosh Meltzer
SUNBURST: SolarWinds Supply-Chain Attack
SUNBURST
2020-12-16Twitter @cybercdh)Colin Hardy
Tweet on 3 key actions SUNBURST performs as soon as it's invoked
SUNBURST
2020-12-16Click All the Things! BlogJamie
Snake/404 Keylogger, BIFF, and Covering Tracks?: An unusual maldoc
2020-12-16CloudflareJesse Kipp, Malavika Balachandran Tadeusz
Trend data on the SolarWinds Orion compromise
SUNBURST
2020-12-16Bleeping ComputerLawrence Abrams
FireEye, Microsoft create kill switch for SolarWinds backdoor
SUNBURST
2020-12-16Intel 471Intel 471
Intel471's full statement on their knowledge of SolarWinds and the cybercriminal underground
SUNBURST
2020-12-16RiskIQCory Kennedy, Jordan Herman, Mia Ihm
Skimming a Little Off the Top: Meyhod’s Skimming Methods Hit Hairloss Specialists
magecart
2020-12-16ReutersRaphael Satter
Exclusive-Suspected Chinese hackers stole camera footage from African Union - memo
2020-12-16LookoutApurva Kumar, Diane Wee, Justin Albrecht, Robert Nickle
Lookout Discovers New Spyware Used by Sextortionists to Blackmail iOS and Android Users
goontact
2020-12-16AccenturePaul Mansfield
Tracking and combatting an evolving danger: Ransomware extortion
DarkSide Egregor Maze Nefilim RagnarLocker REvil Ryuk SunCrypt
2020-12-16SophosLabs UncutSean Gallagher, Sivagnanam Gn
Ransomware operators use SystemBC RAT as off-the-shelf Tor backdoor
SystemBC
2020-12-15PrevasioSergei Shevchenko
Sunburst Backdoor: A Deeper Look Into The SolarWinds' Supply Chain Malware (Broken link)
SUNBURST
2020-12-15Google Project ZeroIan Beer, Samuel Groß
A deep dive into an NSO zero-click iMessage exploit: Remote Code Execution
Chrysaor
2020-12-15KISAKrCERT
Operation MUZABI
Appleseed
2020-12-15MalwarebytesPieter Arntz
Threat profile: Egregor ransomware is making a name for itself
Egregor
2020-12-15VMRayVMRay Labs Team
Malware Analysis Spotlight – Hentai Oniichan Ransomware (Berserker Variant)
2020-12-15Cyborg SecurityAustin Jackson
Threat Hunt Deep Dives: SolarWinds Supply Chain Compromise (Solorigate / SUNBURST Backdoor)
SUNBURST