Click here to download all references as Bib-File.•
2020-11-02
⋅
FireEye
⋅
Live off the Land? How About Bringing Your Own Island? An Overview of UNC1945 SLAPSTICK STEELCORGI |
2020-11-02
⋅
SUCURI
⋅
CSS-JS Steganography in Fake Flash Player Update Malware magecart NetSupportManager RAT |
2020-11-02
⋅
Cybereason
⋅
Back to the Future: Inside the Kimsuky KGH Spyware Suite BabyShark GoldDragon KGH_SPY Kimsuky |
2020-11-01
⋅
Toli Security
⋅
SSH-backdoor Botnet With ‘Research’ Infection Technique |
2020-11-01
⋅
AppRiver
⋅
Vjw0rm Is Back With New Tactics Vjw0rm |
2020-11-01
⋅
Vulnerability.ch Blog
⋅
Observed Malware Campaigns – October 2020 |
2020-10-31
⋅
splunk
⋅
Ryuk and Splunk Detections Ryuk |
2020-10-30
⋅
YouTube (Kaspersky Tech)
⋅
Around the world in 80 days 4.2bn packets Cobalt Strike Derusbi HyperBro Poison Ivy ShadowPad Winnti |
2020-10-30
⋅
⋅
360 Core Security
⋅
肚脑虫组织( APT-C-35)疑似针对巴基斯坦军事人员的最新攻击活动 KnSpy |
2020-10-30
⋅
Github (ThreatConnect-Inc)
⋅
UNC 1878 Indicators from Threatconnect BazarBackdoor Cobalt Strike Ryuk |
2020-10-30
⋅
US-CERT
⋅
Alert (AA20-304A): Iranian Advanced Persistent Threat Actor Identified Obtaining Voter Registration Data |
2020-10-30
⋅
⋅
360
⋅
蓝色魔眼(APT-C-41)组织首次针对我国重要机构定向攻击活动披露 StrongPity |
2020-10-30
⋅
⋅
Qianxin
⋅
攻击武器再升级:Donot组织利用伪造签名样本的攻击活动分析 |
2020-10-30
⋅
Cofense
⋅
The Ryuk Threat: Why BazarBackdoor Matters Most BazarBackdoor Ryuk |
2020-10-30
⋅
Reuters
⋅
Russian hackers targeted California, Indiana Democratic parties |
2020-10-29
⋅
Cisco Talos
⋅
DoNot’s Firestarter abuses Google Firebase Cloud Messaging to spread KnSpy |
2020-10-29
⋅
CERT-FR
⋅
LE MALWARE-AS-A-SERVICE EMOTET Dridex Emotet ISFB QakBot |
2020-10-29
⋅
Mandiant
⋅
FIN11: A Widespread Ransomware and Extortion Operation (Webinar) FIN11 |
2020-10-29
⋅
Twitter (@anthomsec)
⋅
Tweet on UNC1878 activity BazarBackdoor Ryuk TrickBot UNC1878 |
2020-10-29
⋅
RiskIQ
⋅
Ryuk Ransomware: Extensive Attack Infrastructure Revealed Cobalt Strike Ryuk |