Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2021-09-19NetbyteSECFareed
Discovering Linux ELF Beacon of Cobalt Strike Tool
Vermilion Strike
2021-09-19HPPatrick Schläpfer
MirrorBlast and TA505: Examining Similarities in Tactics, Techniques and Procedures
MirrorBlast
2021-09-19The RecordCatalin Cimpanu
Alaska discloses ‘sophisticated’ nation-state cyberattack on health service
2021-09-18MicrosoftRussell McDonald
Hunting for OMI Vulnerability Exploitation with Azure Sentinel
Mirai
2021-09-18Security Soup BlogRyan Campbell
“Squirrelwaffle” Maldoc Analysis
Squirrelwaffle
2021-09-17Group-IBEvgeny Egorov, Yakov Kravtsov
Scamdemic outbreak Scammers attack users in Middle Eastern countries
2021-09-17CrowdStrikeFalcon OverWatch Team
Falcon OverWatch Hunts Down Adversaries Where They Hide
BazarBackdoor Cobalt Strike
2021-09-17cybleCyble
Sophisticated Spyware Posing as a Banking Application To Target Korean Users
Unidentified APK 006
2021-09-17AvastMartin Chlumecký
DirtyMoe: Code Signing Certificate
DirtyMoe
2021-09-17Malware Traffic AnalysisBrad Duncan
2021-09-17 - SQUIRRELWAFFLE Loader with Cobalt Strike
Cobalt Strike Squirrelwaffle
2021-09-17K7 SecurityBaran S
Joker
Joker
2021-09-17ESET ResearchESET Research
Numando: Count once, code twice
Numando
2021-09-17Medium inteloperatorIntel Operator
The default: 63 6f 62 61 6c 74 strike
Cobalt Strike
2021-09-16PCriskTomas Meskauskas
.harma (Ouroboros) ransomware from the operating system
Zeropadypt
2021-09-16Department Of Health And Social Services (DHSS)Department Of Health And Social Services (DHSS)
Department of Health and Social Services 2021 Cyberattack: Frequently Asked Questions Updated Sept. 16, 2021
2021-09-16LumenBlack Lotus Labs
No Longer Just Theory: Black Lotus Labs Uncovers Linux Executables Deployed as Stealth Windows Loaders
PrivetSanya Meterpreter
2021-09-16Group-IBIvan Lebedev, Reza Rafati
RUNLIR - phishing campaign targeting Netherlands
2021-09-16Twitter (@GossiTheDog)Kevin Beaumont
Tweet on some unknown threat actor dropping Mgbot, custom IIS modular backdoor and cobalstrike using exploiting ProxyShell
Cobalt Strike MgBot
2021-09-16AkamaiLarry Cashdollar
Capoae Malware Ramps Up: Uses Multiple Vulnerabilities and Tactics to Spread
Capoae
2021-09-16KasperskyAMR
Exploitation of the CVE-2021-40444 vulnerability in MSHTML