Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2020-07-09ESET ResearchMatías Porolli
More evil: A deep look at Evilnum and its toolset
EVILNUM More_eggs EVILNUM TerraPreter TerraStealer TerraTV Evilnum
2020-07-08SentinelOnePhil Stokes
“EvilQuest” Rolls Ransomware, Spyware & Data Theft Into One
EvilQuest
2020-07-08BitdefenderBogdan Botezatu, Janos Gergo Szeles
Kingminer –a Crypto-Jacking Botnet Under the Scope
Kingminer
2020-07-08SeqriteKalpesh Mantri
Operation ‘Honey Trap’: APT36 Targets Defense Organizations in India
Crimson RAT
2020-07-08COLUMBIA | SIPAJennifer Keltz, John Patrick Dees, John Sakellariadis, Katherine von Ofenheim, Lan Pelekis, Matthew Armelli, Max Egar, Neal Pollard, Stuart Caudill, Vipratap Vikram Singh
Named But Hardly Shamed: What is the Impact of Information Disclosures on an APT Operations?
2020-07-08Medium (@sevdraven)Sébastien Larinier
How to unpack Chinoxy backdoor and decipher the configuration of the backdoor
Chinoxy
2020-07-08Intel 471Intel 471
Iran’s domestic espionage: Lessons from recent data leaks
2020-07-08VMWare Carbon BlackBrian Baskin
TAU Threat Discovery: Conti Ransomware
Conti
2020-07-07FireEyeMatthew Haigh, Trevor Haskell
Configuring a Windows Domain to Dynamically Analyze an Obfuscated Lateral Movement Tool
2020-07-07MWLabLadislav Bačo
Cobalt Strike stagers used by FIN6
Cobalt Strike
2020-07-07GEMINI
"Keeper" Magecart Group Infects 570 Sites
magecart
2020-07-07GEMINI
Full list of all the 570+ sites that the Keeper gang hacked since April 2017
magecart
2020-07-07Sentinel LABSJason Reaves
Breaking EvilQuest | Reversing A Custom macOS Ransomware File Encryption Routine
EvilQuest
2020-07-07MicrosoftTom Burt
Microsoft takes legal action against COVID-19-related cybercrime
2020-07-06Lukáš Štefanko, MalwareHunterTeam
Tweets on Basbanke
Basbanke
2020-07-06NTTSecurity division of NTT Ltd.
TrickBot variant “Anchor_DNS” communicating over DNS
AnchorDNS TrickBot
2020-07-06Youtube (Lukas Stefanko)Lukáš Štefanko
Dynamic analysis of patched EventBot allows us read its detailed debug logs while running | Trojan
Eventbot
2020-07-06Kaspersky LabsAnton Kivva, Igor Golovin
Pig in a poke: smartphone adware
2020-07-06Cisco TalosArnaud Zobec, Ben Baker, Edmund Brumaghin, JJ Cummings
WastedLocker Goes "Big-Game Hunting" in 2020
WastedLocker
2020-07-06SansecSansec Threat Research Team
North Korean hackers implicated in stealing from US and European shoppers
magecart