Click here to download all references as Bib-File.
2021-09-16 ⋅ Cisco ⋅ Operation Layover: How we tracked an attack on the aviation industry to five years of compromise AsyncRAT Houdini NjRAT |
2021-08-31 ⋅ Cisco Talos ⋅ Attracting flies with Honey(gain): Adversarial abuse of proxyware |
2021-08-12 ⋅ Cisco Talos ⋅ Signed MSI files, Raccoon and Amadey are used for installing ServHelper RAT Amadey Raccoon ServHelper |
2021-07-02 ⋅ Cisco ⋅ InSideCopy: How this APT continues to evolve its arsenal AllaKore CetaRAT Lilith NjRAT ReverseRAT |
2021-06-22 ⋅ Cisco ⋅ Attackers in Executive Clothing - BEC continues to separate orgs from their money |
2021-06-01 ⋅ Cisco ⋅ Backdoors, RATs, Loaders evasion techniques BazarNimrod GoldMax Oblique RAT |
2021-05-26 ⋅ Cisco Talos ⋅ Elizabethan England has nothing on modern-day Russia |
2021-05-07 ⋅ Cisco Talos ⋅ Lemon Duck spreads its wings: Actors target Microsoft Exchange servers, incorporate new TTPs CHINACHOPPER Cobalt Strike Lemon Duck |
2021-04-06 ⋅ Github (FrenchCisco) ⋅ Github Repository: RATel RATel |
2021-03-24 ⋅ Cisco ⋅ Quarterly Report: Incident Response trends from Winter 2020-21 Egregor REvil WastedLocker |
2021-03-09 ⋅ Cisco Talos ⋅ Hafnium Update: Continued Microsoft Exchange Server Exploitation |
2021-03-02 ⋅ Cisco Talos ⋅ ObliqueRAT returns with new campaign using hijacked websites Oblique RAT |
2021-02-17 ⋅ Cisco Talos ⋅ Masslogger campaigns exfiltrates user credentials MASS Logger |
2021-01-04 ⋅ Cisco Talos ⋅ Interview with a LockBit ransomware operator LockBit |
2020-12-21 ⋅ Cisco Talos ⋅ 2020: The year in malware WolfRAT Prometei Poet RAT Agent Tesla Astaroth Ave Maria CRAT Emotet Gozi IndigoDrop JhoneRAT Nanocore RAT NjRAT Oblique RAT SmokeLoader StrongPity WastedLocker Zloader |
2020-12-21 ⋅ US Court of Appeals for the Ninth Court ⋅ Case: 20-16408: WhatsApp et al. vs NSO Group |
2020-12-14 ⋅ Cisco Talos ⋅ Threat Advisory: SolarWinds supply chain attack SUNBURST TEARDROP |
2020-12-09 ⋅ Cisco ⋅ Quarterly Report: Incident Response trends from Fall 2020 Cobalt Strike IcedID Maze RansomEXX Ryuk |
2020-11-18 ⋅ Cisco ⋅ Back from vacation: Analyzing Emotet’s activity in 2020 Emotet |
2020-11-17 ⋅ Cisco Talos ⋅ Nibiru ransomware variant decryptor Nibiru |