Click here to download all references as Bib-File.•
2021-03-05
⋅
Forcepoint
⋅
Advancements in Invoicing - A highly sophisticated way to distribute ZLoader Zloader |
2021-03-05
⋅
360 netlab
⋅
QNAP NAS users, make sure you check your system QNAPCrypt |
2021-03-05
⋅
Malwarebytes
⋅
New steganography attack targets Azerbaijan |
2021-03-05
⋅
Sophos
⋅
HAFNIUM: Advice about the new nation-state attack |
2021-03-05
⋅
Medium walmartglobaltech
⋅
A look at an Android bot from unpacking to DGA FluBot |
2021-03-05
⋅
Reddit Crowdstrike
⋅
2021-03-05 - Cool Query Friday - Hunting For Renamed Command Line Programs |
2021-03-05
⋅
Blackberry
⋅
ZeroLogon to Ransomware Mailto |
2021-03-05
⋅
Microsoft
⋅
Exchange Server IIS dropping web shells and other artifacts HAFNIUM |
2021-03-05
⋅
Pastebin (MALWAREQUINN)
⋅
Hafnium Exchange Vuln Detection - KQL HAFNIUM |
2021-03-05
⋅
Github (cert-lv)
⋅
Detect webshells dropped on Microsoft Exchange servers after 0day compromises HAFNIUM |
2021-03-05
⋅
Wired
⋅
Chinese Hacking Spree Hit an ‘Astronomical’ Number of Victims CHINACHOPPER |
2021-03-05
⋅
Huntress Labs
⋅
Operation Exchange Marauder CHINACHOPPER |
2021-03-04
⋅
Malpedia
⋅
Malpedia Page for family Sidewinder SideWinder |
2021-03-04
⋅
NCC Group
⋅
Deception Engineering: exploring the use of Windows Service Canaries against ransomware Ryuk |
2021-03-04
⋅
Trend Micro
⋅
New in Ransomware: AlumniLocker, Humble Feature Different Extortion Techniques |
2021-03-04
⋅
CrowdStrike
⋅
Falcon Complete Stops Microsoft Exchange Server Zero-Day Exploits CHINACHOPPER HAFNIUM |
2021-03-04
⋅
Elastic
⋅
Detection and Response for HAFNIUM Activity HAFNIUM |
2021-03-04
⋅
FireEye
⋅
Detection and Response to Exploitation of Microsoft Exchange Zero-Day Vulnerabilities CHINACHOPPER HAFNIUM |
2021-03-04
⋅
Microsoft
⋅
GoldMax, GoldFinder, and Sibot: Analyzing NOBELIUM’s layered persistence GoldMax |
2021-03-04
⋅
Microsoft
⋅
GoldMax, GoldFinder, and Sibot: Analyzing NOBELIUM’s layered persistence SUNBURST TEARDROP UNC2452 |