Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2020-12-22ZscalerZscaler
@online{zscaler:20201222:hitchhikers:1875e0b, author = {Zscaler}, title = {{The Hitchhiker’s Guide to SolarWinds Incident Response}}, date = {2020-12-22}, organization = {Zscaler}, url = {https://www.zscaler.com/blogs/security-research/hitchhikers-guide-solarwinds-incident-response}, language = {English}, urldate = {2021-01-10} } The Hitchhiker’s Guide to SolarWinds Incident Response
SUNBURST
2020-10-27ZscalerSudeep Singh, Sahil Antil
@online{singh:20201027:apt31:6a72298, author = {Sudeep Singh and Sahil Antil}, title = {{APT-31 leverages COVID-19 vaccine theme and abuses legitimate online services}}, date = {2020-10-27}, organization = {Zscaler}, url = {https://www.zscaler.com/blogs/research/apt-31-leverages-covid-19-vaccine-theme-and-abuses-legitimate-online-services}, language = {English}, urldate = {2020-10-28} } APT-31 leverages COVID-19 vaccine theme and abuses legitimate online services
2020-09-29ZscalerMohd Sadique, Atinderpal Singh
@online{sadique:20200929:spear:de79be6, author = {Mohd Sadique and Atinderpal Singh}, title = {{Spear Phishing Campaign Delivers Buer and Bazar Malware}}, date = {2020-09-29}, organization = {Zscaler}, url = {https://www.zscaler.com/blogs/research/spear-phishing-campaign-delivers-buer-and-bazar-malware}, language = {English}, urldate = {2020-10-15} } Spear Phishing Campaign Delivers Buer and Bazar Malware
BazarBackdoor Buer
2020-09-29ZscalerSudeep Singh, Sahil Antil
@online{singh:20200929:targeted:136d828, author = {Sudeep Singh and Sahil Antil}, title = {{Targeted Attacks on Oil and Gas Supply Chain Industries in the Middle East}}, date = {2020-09-29}, organization = {Zscaler}, url = {https://www.zscaler.com/blogs/security-research/targeted-attacks-oil-and-gas-supply-chain-industries-middle-east}, language = {English}, urldate = {2020-10-04} } Targeted Attacks on Oil and Gas Supply Chain Industries in the Middle East
Azorult
2020-09-16ZscalerAvinash Kumar, Aditya Sharma
@online{kumar:20200916:malware:60f39c3, author = {Avinash Kumar and Aditya Sharma}, title = {{Malware Leveraging XML-RPC Vulnerability to Exploit WordPress Sites}}, date = {2020-09-16}, organization = {Zscaler}, url = {https://www.zscaler.com/blogs/security-research/malware-leveraging-xml-rpc-vulnerability-exploit-wordpress-sites}, language = {English}, urldate = {2020-09-23} } Malware Leveraging XML-RPC Vulnerability to Exploit WordPress Sites
WpBruteBot
2020-09-08ZscalerShivang Desai
@online{desai:20200908:tiktok:d920a43, author = {Shivang Desai}, title = {{TikTok Spyware: A detailed analysis of spyware masquerading as TikTok}}, date = {2020-09-08}, organization = {Zscaler}, url = {https://www.zscaler.com/blogs/research/tiktok-spyware}, language = {English}, urldate = {2020-09-15} } TikTok Spyware: A detailed analysis of spyware masquerading as TikTok
2020-08-14ZscalerMohd Sadique
@online{sadique:20200814:purplewave:2ef459c, author = {Mohd Sadique}, title = {{PurpleWave - A New Infostealer from Russia}}, date = {2020-08-14}, organization = {Zscaler}, url = {https://www.zscaler.com/blogs/research/purplewave-new-infostealer-russia}, language = {English}, urldate = {2020-08-19} } PurpleWave - A New Infostealer from Russia
PurpleWave
2020-07-29ZscalerShivang Desai
@online{desai:20200729:android:fb3b3d0, author = {Shivang Desai}, title = {{Android Spyware Targeting Tanzania Premier League}}, date = {2020-07-29}, organization = {Zscaler}, url = {https://www.zscaler.com/blogs/research/android-spyware-targeting-tanzania-premier-league}, language = {English}, urldate = {2020-08-05} } Android Spyware Targeting Tanzania Premier League
SpyMax
2020-07-17ZscalerSudeep Singh, Kaivalya Khursale
@online{singh:20200717:new:2f385f2, author = {Sudeep Singh and Kaivalya Khursale}, title = {{New Voicemail-Themed Phishing Attacks Use Evasion Techniques and Steal Credentials}}, date = {2020-07-17}, organization = {Zscaler}, url = {https://www.zscaler.com/blogs/security-research/new-voicemail-themed-phishing-attacks-use-evasion-techniques-and-steal-credentials}, language = {English}, urldate = {2022-07-01} } New Voicemail-Themed Phishing Attacks Use Evasion Techniques and Steal Credentials
2020-07-10ZscalerRohit Chaturvedi, Naveen Selvan
@online{chaturvedi:20200710:deep:f2d16c7, author = {Rohit Chaturvedi and Naveen Selvan}, title = {{Deep Dive Into the M00nD3V Logger}}, date = {2020-07-10}, organization = {Zscaler}, url = {https://www.zscaler.com/blogs/research/deep-dive-m00nd3v-logger}, language = {English}, urldate = {2020-07-16} } Deep Dive Into the M00nD3V Logger
M00nD3V Logger
2020-07-02ZscalerMohd Sadique
@online{sadique:20200702:cybergate:b091287, author = {Mohd Sadique}, title = {{CyberGate RAT and RedLine Stealer Delivered in Ongoing AutoIt Malware Campaigns}}, date = {2020-07-02}, organization = {Zscaler}, url = {https://www.zscaler.com/blogs/security-research/cybergate-rat-and-redline-stealer-delivered-ongoing-autoit-malware-campaigns}, language = {English}, urldate = {2022-02-17} } CyberGate RAT and RedLine Stealer Delivered in Ongoing AutoIt Malware Campaigns
CyberGate RedLine Stealer
2020-06-26ZscalerAvinash Kumar, Uday Pratap Singh
@online{kumar:20200626:taurus:4d00888, author = {Avinash Kumar and Uday Pratap Singh}, title = {{Taurus: The New Stealer in Town}}, date = {2020-06-26}, organization = {Zscaler}, url = {https://www.zscaler.com/blogs/research/taurus-new-stealer-town}, language = {English}, urldate = {2020-08-13} } Taurus: The New Stealer in Town
Taurus Stealer
2020-06-19ZscalerAtinderpal Singh, Nirmal Singh, Sahil Antil
@online{singh:20200619:targeted:05d8d31, author = {Atinderpal Singh and Nirmal Singh and Sahil Antil}, title = {{Targeted Attack Leverages India-China Border Dispute to Lure Victims}}, date = {2020-06-19}, organization = {Zscaler}, url = {https://www.zscaler.com/blogs/research/targeted-attack-leverages-india-china-border-dispute-lure-victims}, language = {English}, urldate = {2020-06-21} } Targeted Attack Leverages India-China Border Dispute to Lure Victims
Cobalt Strike
2020-06-11ZscalerSudeep Singh, Atinderpal Singh
@online{singh:20200611:return:3a58e44, author = {Sudeep Singh and Atinderpal Singh}, title = {{The Return of the Higaisa APT}}, date = {2020-06-11}, organization = {Zscaler}, url = {https://www.zscaler.com/blogs/research/return-higaisa-apt}, language = {English}, urldate = {2020-06-12} } The Return of the Higaisa APT
Unidentified 076 (Higaisa LNK to Shellcode)
2020-06-05ZscalerGayathri Anbalagan
@online{anbalagan:20200605:new:9f3abf8, author = {Gayathri Anbalagan}, title = {{New Campaign Abusing StackBlitz Tool to Host Phishing Pages}}, date = {2020-06-05}, organization = {Zscaler}, url = {https://www.zscaler.com/blogs/research/new-campaign-abusing-stackblitz-tool-host-phishing-pages}, language = {English}, urldate = {2020-08-05} } New Campaign Abusing StackBlitz Tool to Host Phishing Pages
2020-05-29ZscalerSudeep Singh
@online{singh:20200529:shellreset:e80d2c8, author = {Sudeep Singh}, title = {{ShellReset RAT Spread Through Macro-Based Documents Using AppLocker Bypass}}, date = {2020-05-29}, organization = {Zscaler}, url = {https://www.zscaler.com/blogs/research/shellreset-rat-spread-through-macro-based-documents-using-applocker-bypass}, language = {English}, urldate = {2020-06-05} } ShellReset RAT Spread Through Macro-Based Documents Using AppLocker Bypass
Quasar RAT
2020-05-20ZscalerRohit Chaturvedi, Amandeep Kumar
@online{chaturvedi:20200520:latest:ca8dd12, author = {Rohit Chaturvedi and Amandeep Kumar}, title = {{Latest Version of Amadey Introduces Screen Capturing and Pushes the Remcos RAT}}, date = {2020-05-20}, organization = {Zscaler}, url = {https://www.zscaler.com/blogs/security-research/latest-version-amadey-introduces-screen-capturing-and-pushes-remcos-rat}, language = {English}, urldate = {2023-10-16} } Latest Version of Amadey Introduces Screen Capturing and Pushes the Remcos RAT
Amadey Remcos
2020-05-11ZscalerSudeep Singh
@online{singh:20200511:targeted:cf94e5a, author = {Sudeep Singh}, title = {{Targeted Attacks on Indian Government and Financial Institutions Using the JsOutProx RAT}}, date = {2020-05-11}, organization = {Zscaler}, url = {https://www.zscaler.com/blogs/research/targeted-attacks-indian-government-and-financial-institutions-using-jsoutprox-rat}, language = {English}, urldate = {2020-05-23} } Targeted Attacks on Indian Government and Financial Institutions Using the JsOutProx RAT
JSOutProx
2020-04-29ZscalerSudeep Singh
@online{singh:20200429:compromised:79b3a7d, author = {Sudeep Singh}, title = {{Compromised Wordpress sites used to distribute Adwind RAT}}, date = {2020-04-29}, organization = {Zscaler}, url = {https://www.zscaler.com/blogs/research/compromised-wordpress-sites-used-distribute-adwind-rat}, language = {English}, urldate = {2020-06-08} } Compromised Wordpress sites used to distribute Adwind RAT
AdWind
2020-04-15ZscalerSudeep Singh
@online{singh:20200415:multistage:c0330fa, author = {Sudeep Singh}, title = {{Multistage FreeDom loader used in Aggah Campaign to spread Nanocore and AZORult}}, date = {2020-04-15}, organization = {Zscaler}, url = {https://www.zscaler.com/blogs/research/multistage-freedom-loader-used-spread-azorult-and-nanocore-rat}, language = {English}, urldate = {2020-06-08} } Multistage FreeDom loader used in Aggah Campaign to spread Nanocore and AZORult
Azorult Nanocore RAT