Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2020-12-16MicrosoftShain Wray
SolarWinds Post-Compromise Hunting with Azure Sentinel
SUNBURST
2020-12-16QianxinRed Raindrop Team
中招目标首次披露:SolarWinds供应链攻击相关域名生成算法可破解!
SUNBURST
2020-12-16Twitter (@FireEye)FireEye
Tweet on SUNBURST from FireEye detailing some additional information
SUNBURST
2020-12-16GuidePoint SecurityWes Riley
SUPERNOVA SolarWinds .NET Webshell Analysis
SUPERNOVA
2020-12-16Twitter (@0xrb)R. Bansal
List of domain infrastructure including DGA domain used by UNC2452
SUNBURST
2020-12-16Intel 471Intel 471
Intel471's full statement on their knowledge of SolarWinds and the cybercriminal underground
SUNBURST
2020-12-16RiskIQCory Kennedy, Jordan Herman, Mia Ihm
Skimming a Little Off the Top: Meyhod’s Skimming Methods Hit Hairloss Specialists
magecart
2020-12-16ReversingLabsTomislav Pericin
SunBurst: the next level of stealth SolarWinds compromise exploited through sophistication and patience
SUNBURST
2020-12-16DragosCamille Singleton, IBM SECURITY X-FORCE, Selena Larson
Assessing Ransomware and Extortion Activities Impacting Industrial Organizations: Ransomware in ICS Environments
REvil
2020-12-16Github (RedDrip7)RedDrip7
A script to decode SUNBURST DGA domain
SUNBURST
2020-12-16ReutersRaphael Satter
Exclusive-Suspected Chinese hackers stole camera footage from African Union - memo
2020-12-16LookoutApurva Kumar, Diane Wee, Justin Albrecht, Robert Nickle
Lookout Discovers New Spyware Used by Sextortionists to Blackmail iOS and Android Users
goontact
2020-12-16AccenturePaul Mansfield
Tracking and combatting an evolving danger: Ransomware extortion
DarkSide Egregor Maze Nefilim RagnarLocker REvil Ryuk SunCrypt
2020-12-16SophosLabs UncutSean Gallagher, Sivagnanam Gn
Ransomware operators use SystemBC RAT as off-the-shelf Tor backdoor
SystemBC
2020-12-16Johannes Bader's BlogJohannes Bader
Next Version of the Bazar Loader DGA
BazarBackdoor
2020-12-15HvS-Consulting AGHvS-Consulting AG
Greetings from Lazarus Anatomy of a cyber espionage campaign
BLINDINGCAN HTTP(S) uploader MimiKatz
2020-12-15PrevasioSergei Shevchenko
Sunburst Backdoor: A Deeper Look Into The SolarWinds' Supply Chain Malware (Broken link)
SUNBURST
2020-12-15Google Project ZeroIan Beer, Samuel Groß
A deep dive into an NSO zero-click iMessage exploit: Remote Code Execution
Chrysaor
2020-12-15KISAKrCERT
Operation MUZABI
Appleseed
2020-12-15HvS-Consulting AGHvS-Consulting AG
Greetings from Lazarus: Anatomy of a cyber espionage campaign
BLINDINGCAN MimiKatz Lazarus Group