Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2021-03-18ElasticSamir Bousseaden
Hunting for Lateral Movement using Event Query Language
2021-03-18YouTube (Microsoft Security)Microsoft
How to protect against Microsoft Exchange Server
2021-03-18ProofpointBrandon Murphy, Dennis Schwarz, Jack Mott, Proofpoint Threat Research Team
Now You See It, Now You Don’t: CopperStealer Performs Widespread Theft
CopperStealer SmokeLoader
2021-03-18360 netlabJinye, YANG XU
Necro upgrades again, using Tor + dynamic domain DGA and aiming at both Windows & Linux
N3Cr0m0rPh Keksec
2021-03-17CISAUS-CERT
SolarWinds and Active Directory/M365 Compromise: Detecting Advanced Persistent Threat Activity from Known Tactics, Techniques, and Procedures (Dead Link)
SUNBURST
2021-03-17QuoIntelligenceQuoIntelligence
China’s Five-Year Plan: A Pursuit for GDP Growth & Technological Self-Sufficiency
2021-03-17Palo Alto Networks Unit 42Haozhe Zhang, Jun Du, Vaibhav Singhal, Zhibin Zhang
Satori: Mirai Botnet Variant Targeting Vantage Velocity Field Unit RCE Vulnerability
Satori
2021-03-17Palo Alto Networks Unit 42Unit42
Ransomware Threat Report 2021
RansomEXX Dharma DoppelPaymer Gandcrab Mailto Maze Phobos RansomEXX REvil Ryuk WastedLocker
2021-03-17GoggleHeadedHacker BlogJacob Pimental
Automatic Gobfuscator Deobfuscation with EKANS Ransomware
Snake
2021-03-17The RecordCatalin Cimpanu
Missed opportunity: Bug in LockBit ransomware allowed free decryptions
LockBit
2021-03-17CrowdStrikeAdam Podlosky, Brendon Feeley
INDRIK SPIDER Supersedes WastedLocker with Hades Ransomware to Circumvent OFAC Sanctions
FriedEx WastedLocker
2021-03-17Recorded FutureInsikt Group®
China-linked TA428 Continues to Target Russia and Mongolia IT Companies
PlugX Poison Ivy TA428
2021-03-17Avast DecodedJakub Kaloč
Hidden menace: Peeling back the secrets of OnionCrypter
2021-03-17HPHP Bromium
Threat Insights Report Q4-2020
Agent Tesla BitRAT ComodoSec Dridex Emotet Ficker Stealer Formbook Zloader
2021-03-17CISAUS-CERT
Alert (AA21-076A): TrickBot Malware
TrickBot
2021-03-16YoroiLuca Mella, Luigi Martire
Threatening within Budget: How WSH-RAT is abused by Cyber-Crooks
Houdini
2021-03-16MorphisecNadav Lorber
Tracking HCrypt: An Active Crypter as a Service
AsyncRAT LimeRAT Remcos
2021-03-16Medium CSIS TechblogAleksejs Kuprins
The Brief Glory of Cabassous/FluBot — a private Android banking botnet
FluBot
2021-03-16ElasticJoe Desimone
Detecting Cobalt Strike with memory signatures
Cobalt Strike
2021-03-16The RecordCatalin Cimpanu
France’s lead cybercrime investigator on the Egregor arrests, cybercrime
Egregor