Click here to download all references as Bib-File.•
2025-04-07
⋅
The Record
⋅
Flaw in ESET security software used to spread malware from ToddyCat group |
2025-04-07
⋅
ANY.RUN
⋅
ValleyRAT ValleyRAT |
2025-04-06
⋅
⋅
Cert-UA
⋅
Target espionage activity UAC-0226 in relation to the centers of innovation, state and law enforcement services using the GIFTEDCROOK (CERT-UA#14303) GIFTEDCROOK UAC-0226 |
2025-04-06
⋅
Gridinsoft
⋅
How to Remove Lilith RAT: Complete Removal Guide Lilith puNK-003 |
2025-04-04
⋅
⋅
Youtube (greenplan)
⋅
[BINARY REFINERY] (StegoCampaign) - Deobfuscation of a VBScript stage (PART 2) |
2025-04-04
⋅
US District Court Middle District of Florida
⋅
United States of America v. Noah Michael Urban |
2025-04-03
⋅
SOC Prime
⋅
UAC-0219 Attack Detection: A New Cyber-Espionage Campaign Using a PowerShell Stealer WRECKSTEEL WRECKSTEEL UAC-0219 |
2025-04-03
⋅
Microsoft
⋅
Threat actors leverage tax season to deploy tax-themed phishing campaigns Brute Ratel C4 CloudEyE Latrodectus Remcos Storm-0249 |
2025-04-03
⋅
Mandiant
⋅
Suspected China-Nexus Threat Actor Actively Exploiting Critical Ivanti Connect Secure Vulnerability (CVE-2025-22457) SPAWNSNARE |
2025-04-03
⋅
ThreatMon
⋅
Ransomhub Group & New Betruger Backdoor Technical Malware Analysis Report |
2025-04-02
⋅
BushidoToken
⋅
Tracking Adversaries: EvilCorp, the RansomHub affiliate RansomHub |
2025-04-02
⋅
Intel 471
⋅
An in-depth look at Black Basta's TTPs Black Basta Black Basta |
2025-04-01
⋅
Hunt.io
⋅
Same Russian-Speaking Threat Actor, New Tactics: Abuse of Cloudflare Services for Phishing and Telegram to Filter Victim IPs Pyramid |
2025-04-01
⋅
ANY.RUN
⋅
Salvador Stealer: New Android Malware That Phishes Banking Details & OTPs Salvador Stealer |
2025-04-01
⋅
ZW01f
⋅
Auto-color - Linux backdoor Auto-Color |
2025-03-31
⋅
Seqrite
⋅
Operation HollowQuill: Malware delivered into Russian R&D Networks via Research Decoy PDFs Cobalt Strike HollowQuill |
2025-03-31
⋅
Trend Micro
⋅
The Espionage Toolkit of Earth Alux: A Closer Look at its Advanced Techniques Godzilla Webshell Cobalt Strike RAILSETTER Earth Alux |
2025-03-28
⋅
Trend Micro
⋅
A Deep Dive into Water Gamayun’s Arsenal and Infrastructure DarkWisp SilentPrism Kematian Stealer Rhadamanthys Stealc Water Gamayun |
2025-03-28
⋅
cyble
⋅
TsarBot: A New Android Banking Trojan Targeting Over 750 Banking, Finance, and Cryptocurrency Applications TsarBot |
2025-03-28
⋅
ThreatFabric
⋅
Exposing Crocodilus: New Device Takeover Malware Targeting Android Devices Crocodilus |