Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2020-12-28Bleeping ComputerLawrence Abrams
Home appliance giant Whirlpool hit in Nefilim ransomware attack
Nefilim
2020-12-27Github (arsium)arsium
HorusEyesRat
HorusEyes RAT
2020-12-26CYBER GEEKS All Things InfosecCyberMasterV
Analyzing APT19 malware using a step-by-step method
Derusbi
2020-12-26CERT.orgSolarwind
SolarWinds Orion API authentication bypass allows remote comand execution (CVE-2020-10148)
2020-12-26Twitter (@MalwareRE)Ramin Nafisi
Tweet on active exploitation of 0day vulnerability in the SolarWinds Orion
SUPERNOVA
2020-12-26The Washington PostEllen Nakashima
Russian hackers compromised Microsoft cloud customers through third party, putting emails and other data at risk
2020-12-26Medium grimminckStefan Grimminck
Spoofing JARM signatures. I am the Cobalt Strike server now!
Cobalt Strike
2020-12-25VinCSSTrương Quốc Ngân
[RE018-2] Analyzing new malware of China Panda hacker group used to attack supply chain against Vietnam Government Certification Authority - Part 2
SManager
2020-12-25ComaeMatt Suiche
SUNBURST & Memory Analysis
SUNBURST
2020-12-24InfoSec Handlers Diary BlogXavier Mertens
Malicious Word Document Delivering an Octopus Backdoor
Octopus
2020-12-24IronNetAdam Hlavek
China cyber attacks: the current threat landscape
PLEAD TSCookie FlowCloud Lookback PLEAD PlugX Quasar RAT Winnti
2020-12-24Twitter (@TheEnergyStory)Dominik Reichel
Tweet on TEARDROP sample
TEARDROP
2020-12-24K7 SecurityK7 Labs, Partheeban J
Dark Side Of BlackNET RAT
BlackNET RAT
2020-12-24FireEyeJay Smith, Stephen Eckels, William Ballenthin
SUNBURST Additional Technical Details
SUNBURST
2020-12-23Kaspersky LabsSeongsu Park
Lazarus covets COVID-19-related intelligence
BookCodes RAT wAgentTea
2020-12-23Sentinel LABSJames Haughom, Jim Walter, Marco Figueroa
SolarWinds | Understanding & Detecting the SUPERNOVA Webshell Trojan
SUPERNOVA BRONZE SPIRAL
2020-12-23Dissecting MalwareMarius Genheimer
Between a rock and a hard place - Exploring Mount Locker Ransomware
Mount Locker
2020-12-23PrevasioSergei Shevchenko
DNS Tunneling In The SolarWinds Supply Chain Attack
SUNBURST
2020-12-23CrowdStrikeMichael Sentonas
CrowdStrike Launches Free Tool to Identify and Help Mitigate Risks in Azure Active Directory
SUNBURST
2020-12-23Palo Alto Networks Unit 42Unit 42
A Timeline Perspective of the SolarStorm Supply-Chain Attack
SUNBURST TEARDROP