Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2020-12-26Twitter (@MalwareRE)Ramin Nafisi
Tweet on active exploitation of 0day vulnerability in the SolarWinds Orion
SUPERNOVA
2020-12-26The Washington PostEllen Nakashima
Russian hackers compromised Microsoft cloud customers through third party, putting emails and other data at risk
2020-12-26Medium grimminckStefan Grimminck
Spoofing JARM signatures. I am the Cobalt Strike server now!
Cobalt Strike
2020-12-25VinCSSTrương Quốc Ngân
[RE018-2] Analyzing new malware of China Panda hacker group used to attack supply chain against Vietnam Government Certification Authority - Part 2
SManager
2020-12-25ComaeMatt Suiche
SUNBURST & Memory Analysis
SUNBURST
2020-12-24InfoSec Handlers Diary BlogXavier Mertens
Malicious Word Document Delivering an Octopus Backdoor
Octopus
2020-12-24IronNetAdam Hlavek
China cyber attacks: the current threat landscape
PLEAD TSCookie FlowCloud Lookback PLEAD PlugX Quasar RAT Winnti
2020-12-24Twitter (@TheEnergyStory)Dominik Reichel
Tweet on TEARDROP sample
TEARDROP
2020-12-24K7 SecurityK7 Labs, Partheeban J
Dark Side Of BlackNET RAT
BlackNET RAT
2020-12-24FireEyeJay Smith, Stephen Eckels, William Ballenthin
SUNBURST Additional Technical Details
SUNBURST
2020-12-23Kaspersky LabsSeongsu Park
Lazarus covets COVID-19-related intelligence
BookCodes RAT wAgentTea
2020-12-23Sentinel LABSJames Haughom, Jim Walter, Marco Figueroa
SolarWinds | Understanding & Detecting the SUPERNOVA Webshell Trojan
SUPERNOVA BRONZE SPIRAL
2020-12-23Dissecting MalwareMarius Genheimer
Between a rock and a hard place - Exploring Mount Locker Ransomware
Mount Locker
2020-12-23PrevasioSergei Shevchenko
DNS Tunneling In The SolarWinds Supply Chain Attack
SUNBURST
2020-12-23CrowdStrikeMichael Sentonas
CrowdStrike Launches Free Tool to Identify and Help Mitigate Risks in Azure Active Directory
SUNBURST
2020-12-23Palo Alto Networks Unit 42Unit 42
A Timeline Perspective of the SolarStorm Supply-Chain Attack
SUNBURST TEARDROP
2020-12-23Sentinel LABSJames Haughom, Jim Walter, Marco Figueroa
SolarWinds | Understanding & Detecting the SUPERNOVA Webshell Trojan
SUPERNOVA
2020-12-230xC0DECAFEThomas Barabosch
Detect RC4 in (malicious) binaries
SmokeLoader Zloader
2020-12-23Stranded on Pylos BlogJoe Slowik
Mindmap on Russia-linked threat groups
2020-12-23FBIFBI
Iranian Cyber Actors Responsible for Website Threatening U.S. Election Officials