Click here to download all references as Bib-File.•
| 2021-05-31
⋅
DataBreaches.net
⋅
Babuk re-organizes as Payload Bin, offers its first leak Babuk HelloKitty |
| 2021-05-30
⋅
Microsoft
⋅
Defend and deter |
| 2021-05-29
⋅
Twitter (@elisalem9)
⋅
Tweet on obfuscation mechanism and extraction procedure of COBALTSTRIKE beacon module used by NOBELIUM/UNC2452 Cobalt Strike |
| 2021-05-29
⋅
Youtube (AhmedS Kasmani)
⋅
Analysis of ICEID Malware Installer DLL IcedID |
| 2021-05-28
⋅
Microsoft
⋅
Breaking down NOBELIUM’s latest early-stage toolset BOOMBOX Cobalt Strike |
| 2021-05-28
⋅
CISA
⋅
Alert (AA21-148A): Sophisticated Spearphishing Campaign Targets Government Organizations, IGOs, and NGOs Cobalt Strike |
| 2021-05-28
⋅
Wanted by the FBI: Zhu Yunmin, Wu Shurong, Ding Xiaoyang, Cheng Qingmin APT40 |
| 2021-05-28
⋅
United States of America vs Ding Xiaoyang, Cheng Qingmin, Zhu Yunmin, Wu Shurong APT40 |
| 2021-05-28
⋅
CISA
⋅
Malware Analysis Report (AR21-148A): Cobalt Strike Beacon Cobalt Strike |
| 2021-05-28
⋅
Twitter (@Jacob_Pimental)
⋅
Tweet on REvil ver 2.07 REvil |
| 2021-05-28
⋅
SUCURI
⋅
WooCommerce Credit Card Skimmer Hides in Plain Sight |
| 2021-05-28
⋅
Medium s2wlab
⋅
Deep Analysis of Vidar Stealer Vidar |
| 2021-05-28
⋅
Twitter (@MBThreatIntel)
⋅
Tweet on web skimmer hiding JavaScript inside images for exfiltration |
| 2021-05-28
⋅
SophosLabs Uncut
⋅
A new ransomware enters the fray: Epsilon Red Epsilon Red |
| 2021-05-28
⋅
Trend Micro
⋅
DarkSide on Linux: Virtual Machines Targeted DarkSide |
| 2021-05-27
⋅
cyberpunkleigh
⋅
Apostle Ransomware Analysis Apostle |
| 2021-05-27
⋅
xorhex blog
⋅
Mustang Panda PlugX - Reused Mutex and Folder Found in the Extracted Config PlugX |
| 2021-05-27
⋅
cyjax
⋅
Financial spear-phishing campaigns pushing RATs |
| 2021-05-27
⋅
JPCERT/CC
⋅
Attacks Embedding XMRig on Compromised Servers |
| 2021-05-27
⋅
Check Point
⋅
Uyghurs, a Turkic ethnic minority in China, targeted via fake foundations - Check Point Research |