Malpedia Library

Click here to download all references as Bib-File.•

2020-12-18 ⋅ Microsoft ⋅ Alex Weinert
Protecting Microsoft 365 from on-premises attacks

2020-12-18 ⋅ THE DISPATCH ⋅ Jack Goldsmith
Self-Delusion on the Russia Hack

2020-12-18 ⋅ Sentinel LABS ⋅ James Haughom
SolarWinds SUNBURST Backdoor: Inside the APT Campaign
SUNBURST

2020-12-18 ⋅ Microsoft ⋅ Microsoft 365 Defender Research Team, Microsoft Threat Intelligence Center (MSTIC)
Analyzing Solorigate, the compromised DLL file that started a sophisticated cyberattack, and how Microsoft Defender helps protect customers
SUNBURST SUPERNOVA TEARDROP UNC2452

2020-12-18 ⋅ Intel 471 ⋅ Intel 471
TA505’s modified loader means new attack campaign could be coming
Get2

2020-12-18 ⋅ ThreatConnect ⋅ ThreatConnect
Tracking Sunburst-Related Activity with ThreatConnect Dashboards
SUNBURST

2020-12-18 ⋅ Costin Raiu
Tweet from Costin Raiu about confirmed TEARDROP sample
TEARDROP

2020-12-18 ⋅ Elastic ⋅ Camilla Montonen, Justin Ibarra
Combining supervised and unsupervised machine learning for DGA detection
SUNBURST

2020-12-18 ⋅ Seqrite ⋅ Pavankumar Chaudhari
RAT used by Chinese cyberspies infiltrating Indian businesses
Ghost RAT

2020-12-18 ⋅ Kaspersky Labs ⋅ Costin Raiu, Igor Kuznetsov
Sunburst: connecting the dots in the DNS requests
SUNBURST

2020-12-18 ⋅ DomainTools ⋅ Joe Slowik
Continuous Eruption: Further Analysis of the SolarWinds Supply Chain Incident
SUNBURST

2020-12-18 ⋅ Cloudflare ⋅ Jesse Kipp, Nick Blazier
A quirk in the SUNBURST DGA algorithm
SUNBURST

2020-12-18 ⋅ Reuters ⋅ Joseph Menn
Exclusive: Microsoft breached in suspected Russian hack using SolarWinds - sources

2020-12-17 ⋅ Prevasio ⋅ Sergei Shevchenko
Sunburst Backdoor, Part II: DGA & The List of Victims
SUNBURST

2020-12-17 ⋅ Palo Alto Networks Unit 42 ⋅ Matthew Tennis
SUPERNOVA SolarWinds .NET Webshell Analysis
SUPERNOVA BRONZE SPIRAL

2020-12-17 ⋅ Menlo Security ⋅ Krishnan Subramanian
Increase In Attack: SocGholish
FAKEUPDATES

2020-12-17 ⋅ Wired ⋅ Erica Borghard, Jacquelyn Schneider
Russia's Hack Wasn't Cyberwar. That Complicates US Strategy

2020-12-17 ⋅ splunk ⋅ John Stoner
Onboarding Threat Indicators into Splunk Enterprise Security: SolarWinds Continued
SUNBURST

2020-12-17 ⋅ The Intercept ⋅ Jordan Smith, Mara Hvistendahl, Micah Lee
Russian Hackers Have Been Inside Austin City Network for Months

2020-12-17 ⋅ ⋅ VinCSS ⋅ VinCSS
[RE017-1] Phân tích kỹ thuật dòng mã độc mới được sử dụng để tấn công chuỗi cung ứng nhắm vào Ban Cơ yếu Chính phủ Việt Nam của nhóm tin tặc Panda Trung Quốc (Phần 1)
SManager