Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2021-01-12MimecastMimecast Contributing Writer
Important Update from Mimecast
2021-01-12SophosAndrew Brandt, Pankaj Kohli
New Android spyware targets users in Pakistan
PackChat
2021-01-12BrightTALK (FireEye)Ben Read, John Hultquist
UNC2452: What We Know So Far
Cobalt Strike SUNBURST TEARDROP
2021-01-12UptycsAbhijit Mohanta, Ashwin Vamshi
Confucius APT deploys Warzone RAT
Ave Maria Confucius
2021-01-11Palo Alto Networks Unit 42Robert Falcone
xHunt Campaign: New BumbleBee Webshell and SSH Tunnels Used for Lateral Movement
2021-01-11AhnLabASEC Analysis Team
Smoke Loader Learns New Tricks
SmokeLoader
2021-01-11Twitter (@dk_samper)Dávid Kosť
Tweet on Initial access of Avaddon Ransomware group from an IR engagement
Avaddon
2021-01-11NetresecErik Hjelmvik
Robust Indicators of Compromise for SUNBURST
SUNBURST
2021-01-11CrowdStrikeCrowdStrike Intelligence Team
SUNSPOT: An Implant in the Build Process
SUNBURST
2021-01-11SolarWindsSudhakar Ramakrishna
New Findings From Our Investigation of SUNBURST
Cobalt Strike SUNBURST TEARDROP
2021-01-11ESET ResearchMatías Porolli
Operation Spalax: Targeted malware attacks in Colombia
Agent Tesla AsyncRAT NjRAT Remcos
2021-01-11Sentinel LABSPhil Stokes
FADE DEAD | Adventures in Reversing Malicious Run-Only AppleScripts
OSAMiner
2021-01-11BitdefenderBitdefender Team
Darkside Ransomware Decryption Tool
DarkSide
2021-01-11ReutersChristopher Bing
Exclusive: FBI probes Russian-linked postcard sent to FireEye CEO after cybersecurity firm uncovered hack - sources
2021-01-11Kaspersky LabsCostin Raiu, Georgy Kucherin, Igor Kuznetsov
Sunburst backdoor – code overlaps with Kazuar
Kazuar SUNBURST
2021-01-11The DFIR ReportThe DFIR Report
Trickbot Still Alive and Well
Cobalt Strike TrickBot
2021-01-10Medium walmartglobaltechJason Reaves
MAN1, Moskal, Hancitor and a side of Ransomware
Cobalt Strike Hancitor SendSafe VegaLocker Moskalvzapoe
2021-01-09Marco Ramilli's BlogMarco Ramilli
Command and Control Traffic Patterns
ostap LaZagne Agent Tesla Azorult Buer Cobalt Strike DanaBot DarkComet Dridex Emotet Formbook IcedID ISFB NetWire RC PlugX Quasar RAT SmokeLoader TrickBot
2021-01-09Connor McGarr's BlogConnor McGarr
Malware Development: Leveraging Beacon Object Files for Remote Process Injection via Thread Hijacking
Cobalt Strike
2021-01-09Github (f0wl)Marius Genheimer
ezuri_unpack