Click here to download all references as Bib-File.•
| 2021-03-05
⋅
Sophos
⋅
HAFNIUM: Advice about the new nation-state attack |
| 2021-03-05
⋅
Medium walmartglobaltech
⋅
A look at an Android bot from unpacking to DGA FluBot |
| 2021-03-05
⋅
Reddit Crowdstrike
⋅
2021-03-05 - Cool Query Friday - Hunting For Renamed Command Line Programs |
| 2021-03-05
⋅
Blackberry
⋅
ZeroLogon to Ransomware Mailto |
| 2021-03-05
⋅
Microsoft
⋅
Exchange Server IIS dropping web shells and other artifacts HAFNIUM |
| 2021-03-05
⋅
Pastebin (MALWAREQUINN)
⋅
Hafnium Exchange Vuln Detection - KQL HAFNIUM |
| 2021-03-05
⋅
Github (cert-lv)
⋅
Detect webshells dropped on Microsoft Exchange servers after 0day compromises HAFNIUM |
| 2021-03-05
⋅
Wired
⋅
Chinese Hacking Spree Hit an ‘Astronomical’ Number of Victims CHINACHOPPER |
| 2021-03-05
⋅
Huntress Labs
⋅
Operation Exchange Marauder CHINACHOPPER |
| 2021-03-04
⋅
Malpedia
⋅
Malpedia Page for family Sidewinder SideWinder |
| 2021-03-04
⋅
NCC Group
⋅
Deception Engineering: exploring the use of Windows Service Canaries against ransomware Ryuk |
| 2021-03-04
⋅
Trend Micro
⋅
New in Ransomware: AlumniLocker, Humble Feature Different Extortion Techniques |
| 2021-03-04
⋅
CrowdStrike
⋅
Falcon Complete Stops Microsoft Exchange Server Zero-Day Exploits CHINACHOPPER HAFNIUM |
| 2021-03-04
⋅
Elastic
⋅
Detection and Response for HAFNIUM Activity HAFNIUM |
| 2021-03-04
⋅
FireEye
⋅
Detection and Response to Exploitation of Microsoft Exchange Zero-Day Vulnerabilities CHINACHOPPER HAFNIUM |
| 2021-03-04
⋅
Microsoft
⋅
GoldMax, GoldFinder, and Sibot: Analyzing NOBELIUM’s layered persistence GoldMax |
| 2021-03-04
⋅
Microsoft
⋅
GoldMax, GoldFinder, and Sibot: Analyzing NOBELIUM’s layered persistence SUNBURST TEARDROP UNC2452 |
| 2021-03-04
⋅
FireEye
⋅
New SUNSHUTTLE Second-Stage Backdoor Uncovered Targeting U.S.-Based Entity; Possible Connection to UNC2452 UNC2452 |
| 2021-03-04
⋅
WMC Global
⋅
The Compact Campaign |
| 2021-03-04
⋅
360 netlab
⋅
Gafgtyt_tor and Necro are on the move again Bashlite N3Cr0m0rPh Keksec |