Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2021-06-02Microstep Online Research Response CenterMicrostep Online Research Response Center
Analysis of Lazarus's recent targeted attacks against military industry and other industries
2021-06-02Twitter (@xorhex)Xorhex
Tweet on new variant of PlugX from RedDelta Group
PlugX
2021-06-02xorhex blogTwitter (@xorhex)
RedDelta PlugX Undergoing Changes and Overlapping Again with Mustang Panda PlugX Infrastructure
PlugX
2021-06-02Trend MicroDaniel Lunghi
Taking Advantage of PE Metadata, or How To Complete Your Favorite Threat Actor’s Sample Collection
HyperSSL
2021-06-02TEAMT5TeamT5
Introducing The Most Profitable Ransomware REvil
Gandcrab REvil
2021-06-02SophosSean Gallagher
AMSI bypasses remain tricks of the malware trade
Agent Tesla Cobalt Strike Meterpreter
2021-06-02Bleeping ComputerLawrence Abrams
FUJIFILM shuts down network after suspected ransomware attack
QakBot
2021-06-02Bleeping ComputerLawrence Abrams
FBI: REvil cybergang behind the JBS ransomware attack
REvil
2021-06-02Medium CyCraftCyCraft Technology Corp
China-Linked Threat Group Targets Taiwan Critical Infrastructure, Smokescreen Ransomware
Cobalt Strike ColdLock
2021-06-02Check Point ResearchCheck Point Research
SharpPanda: Chinese APT Group Targets Southeast Asian Government With Previously Unknown Backdoor
SharpPanda
2021-06-01Dark VortexDark Vortex
PE Reflection: The King is Dead, Long Live the King
Brute Ratel C4
2021-06-01Github (Albocoder)Erin Avllazagaj
Inside commercial malware sandboxes
2021-06-01CiscoJosh Pyorre
Backdoors, RATs, Loaders evasion techniques
BazarNimrod GoldMax Oblique RAT
2021-06-01SANSJake Williams, Kevin Haley
A Contrarian View on SolarWinds
Cobalt Strike Raindrop SUNBURST TEARDROP
2021-06-01Department of JusticeOffice of Public Affairs
Justice Department Announces Court-Authorized Seizure of Domain Names Used in Furtherance of Spear-Phishing Campaign Posing as U.S. Agency for International Development
Cobalt Strike
2021-06-01MicrosoftMicrosoft 365 Defender Threat Intelligence Team, Microsoft Threat Intelligence Center (MSTIC)
New sophisticated email-based attack from NOBELIUM
Cobalt Strike
2021-06-01Rising Threat Intelligence CenterRising Threat Intelligence Center
Rising warning: APT organizes Lazarus Group to launch an attack on China
2021-06-01Möbius Strip Reverse EngineeringRolf Rolles
Hex-Rays, GetProcAddress, and Malware Analysis
2021-06-01CyberScoopSean Lyngaas
Ex-US ambassador, anti-corruption activists in Ukraine were targets of suspected Russian phishing
2021-06-01SentinelOneJuan Andrés Guerrero-Saade
NobleBaron | New Poisoned Installers Could Be Used In Supply Chain Attacks
Cobalt Strike