Click here to download all references as Bib-File.•
2024-01-25
⋅
JSAC 2024
⋅
Threat Intelligence of Abused Public Post-Exploitation Frameworks AsyncRAT DCRat Empire Downloader GRUNT Havoc Koadic Merlin PoshC2 Quasar RAT Sliver |
2024-01-23
⋅
YouTube (Invoke RE)
⋅
Analyzing and Unpacking Qakbot using Binary Ninja Automation QakBot |
2024-01-22
⋅
SentinelOne
⋅
ScarCruft | Attackers Gather Strategic Intelligence and Target Cybersecurity Professionals Kimsuky |
2024-01-15
⋅
Russian Panda Research Blog
⋅
From Russia With Code: Disarming Atomic Stealer AMOS |
2024-01-10
⋅
Malwarebytes
⋅
Atomic Stealer rings in the new year with updated version AMOS |
2024-01-05
⋅
IBM
⋅
Tomb Crypter and ChrGetPdsi Stealer Analysis Report (INT00011701) Broomstick ChrGetPdsi Stealer |
2023-12-21
⋅
Proofpoint
⋅
BattleRoyal, DarkGate Cluster Spreads via Email and Fake Browser Updates DarkGate |
2023-12-14
⋅
Mandiant
⋅
Opening a Can of Whoop Ads: Detecting and Disrupting a Malvertising Campaign Distributing Backdoors DanaBot DarkGate UNC4393 |
2023-12-14
⋅
Mandiant
⋅
Opening a Can of Whoop Ads: Detecting and Disrupting a Malvertising Campaign Distributing Backdoors DanaBot DarkGate |
2023-12-12
⋅
Microsoft
⋅
Threat actors misuse OAuth applications to automate financially driven attacks Storm-1283 Storm-1286 |
2023-12-06
⋅
Unveiling “Vetta Loader”: A custom loader hitting Italy and spread through infected USB Drives Vetta Loader |
2023-11-30
⋅
Promon
⋅
Promon discovers new Android banking malware, “FjordPhantom” |
2023-11-20
⋅
Trend Micro
⋅
CVE-2023-46604 (Apache ActiveMQ) Exploited to Infect Systems With Cryptominers and Rootkits |
2023-11-06
⋅
Palo Alto Networks Unit 42
⋅
Agonizing Serpens (Aka Agrius) Targeting the Israeli Higher Education and Tech Sectors Apostle Pink Sandstorm |
2023-10-31
⋅
Palo Alto Networks Unit 42
⋅
Over the Kazuar’s Nest: Cracking Down on a Freshly Hatched Backdoor Used by Pensive Ursa (Aka Turla) Kazuar |
2023-10-24
⋅
Sentinel LABS
⋅
The Israel-Hamas War | Cyber Domain State-Sponsored Activity of Interest ShroudedSnooper |
2023-10-22
⋅
Bleeping Computer
⋅
New TetrisPhantom hackers steal data from secure USB drives on govt systems |
2023-10-11
⋅
Microsoft
⋅
Automatic disruption of human-operated attacks through containment of compromised user accounts Akira Akira |
2023-09-25
⋅
Video Games Chronicle
⋅
A ransomware group claims to have breached ‘all Sony systems’ RansomVC |
2023-09-23
⋅
Mandiant
⋅
Special Delivery: Defending and Investigating Advanced Intrusions on Secure Email Gateways SALTWATER SEASPY WHIRLPOOL UNC4841 |