Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2022-01-11Twitter (@cglyer)Christopher Glyer
Thread on DEV-0401, a china based ransomware operator exploiting VMware Horizon with log4shell and deploying NightSky ransomware
Cobalt Strike NightSky
2021-11-18MandiantChris Sistrunk, Daniel Kapellmann, Glen Chason, Ken Proska
Introducing Mandiant's Digital Forensics and Incident Response Framework for Embedded OT Systems
2021-11-05Trend MicroChristopher Boyton
A Review and Analysis of 2021 Buer Loader Campaigns
Buer
2021-11-05Trend MicroChristopher Boyton
An Analysis of Buer Loader
Buer
2021-11-02SpearTipChris Swagler
FBI Warning: HelloKitty Ransomware Add DDoS to Extortion Arsenal
HelloKitty
2021-10-22ReutersChristopher Bing, Joseph Menn
EXCLUSIVE Governments turn tables on ransomware gang REvil by pushing it offline
REvil REvil
2021-09-14McAfeeChristiaan Beek
Operation ‘Harvest’: A Deep Dive into a Long-term Campaign
MimiKatz PlugX Winnti
2021-09-14CSO OnlineChristopher Burgess
Russia is fully capable of shutting down cybercrime
2021-09-01YouTube (Black Hat)Christian Doerr, Tsuyoshi Taniguchi
How Did the Adversaries Abusing the Bitcoin Blockchain Evade Our Takeover?
Cerber Pony
2021-08-26The New York TimesChris Buckley, Paul Mozur
Spies for Hire: China’s New Breed of Hackers Blends Espionage and Entrepreneurship
2021-08-17IBM X-Force ExchangeCharlotte Hammond, Chris Caridi
Analysis of Diavol Ransomware Reveals Possible Link to TrickBot Gang
Diavol
2021-07-29Talos IntelligenceAndrew Windsor, Chris Neal
Talos Spotlight: Solarmarker
solarmarker
2021-07-21IBMAllison Wikoff, Chris Caridi
This Chat is Being Recorded: Egregor Ransomware Negotiations Uncovered
Egregor
2021-07-19CrowdStrikeAspen Lindblom, Chris Sheldon, Joseph Godwin
Shlayer Malvertising Campaigns Still Using Flash Update Disguise
Shlayer
2021-07-14MDSecChris Basnett
Investigating a Suspicious Service
Cobalt Strike
2021-07-14Cado SecurityChristopher Doman
Triage analysis of Serv-U FTP user backdoor deployed by CVE-2021-35211 (DEV-0322)
2021-07-13Cado SecurityChristopher Doman
Resources for Investigating Cloud and Container Penetration Testing Tools
2021-06-29YouTube (C. Beek)Christiaan Beek
Demo of REvil/Sodinokibi Linux variant encrypting a Linux system
REvil
2021-06-10laceworkChris Hall
Keksec & Tsunami-Ryuk
N3Cr0m0rPh
2021-05-20laceworkChris Hall, Jared Stroud, Tom Hegel
8220 Gangs Recent use of Custom Miner and Botnet