Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2020-12-17Twitter (@megabeets_)Itay Cohen
Tweet on SUNBURST malware discussing some of its evasion techniques
SUNBURST
2020-12-17EST SecurityAlyac
Thallium organization attacks domestic blockchain company with documents of non-delinquency confirmation
2020-12-17Trend MicroAliakbar Zahravi, William Gamazo Sanchez
Credential Stealer Targets US, Canadian Bank Customers
2020-12-17The Wall Street JournalDustin Volz, Robert McMillan
Hack Suggests New Scope, Sophistication for Cyberattacks
2020-12-17Palo Alto Networks Unit 42Matt Tennis
SUPERNOVA: SolarStorm’s Novel .NET Webshell
SUPERNOVA
2020-12-17ZDNetCatalin Cimpanu
Microsoft confirms it was also breached in recent SolarWinds supply chain hack
2020-12-17NSANSA
Detecting Abuse of Authentication Mechanisms
2020-12-17MicrosoftBrad Smith
A moment of reckoning: the need for a strong and global cybersecurity response
SUNBURST
2020-12-17US-CERTUS-CERT
Alert (AA20-352A): Advanced Persistent Threat Compromise of Government Agencies, Critical Infrastructure, and Private Sector Organizations
SUNBURST
2020-12-17ESET ResearchIgnacio Sanmillan, Matthieu Faou
Operation SignSight: Supply‑chain attack against a certification authority in Southeast Asia
SManager
2020-12-17ClearSkyClearSky Research Team
Pay2Kitten: Pay2Key Ransomware - A New Campaign by Fox Kitten
Pay2Key
2020-12-16FortinetFred Gutierrez, Val Saengphaibul
Adversary Playbook: JavaScript RAT Looking for that Government Cheese
JSOutProx
2020-12-16PastebinAnonymous
Paste of subdomain & DGA domain names used in SolarWinds attack
SUNBURST UNC2452
2020-12-16CrowdStrikeDavid Rojas, Mark Robinson
Hiding in Plain Sight: Remediating “Hidden” Malware with Real Time Response
Andromeda
2020-12-16360 Threat Intelligence CenterAdvanced Threat Institute
旺刺组织(APT-C-47)使用ClickOnce技术的攻击活动披露
2020-12-16Cyborg SecurityJosh Meltzer
SUNBURST: SolarWinds Supply-Chain Attack
SUNBURST
2020-12-16Twitter @cybercdh)Colin Hardy
Tweet on 3 key actions SUNBURST performs as soon as it's invoked
SUNBURST
2020-12-16Click All the Things! BlogJamie
Snake/404 Keylogger, BIFF, and Covering Tracks?: An unusual maldoc
2020-12-16CloudflareJesse Kipp, Malavika Balachandran Tadeusz
Trend data on the SolarWinds Orion compromise
SUNBURST
2020-12-16Bleeping ComputerLawrence Abrams
FireEye, Microsoft create kill switch for SolarWinds backdoor
SUNBURST