Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2021-08-31CrowdStrikeAlexander Hanel
Sidoh: WIZARD SPIDER’s Mysterious Exfiltration Tool
Ryuk Stealer
2021-08-30CrowdStrikeEric Loui, Josh Reynolds
CARBON SPIDER Embraces Big Game Hunting, Part 1
Bateleur Griffon Carbanak DarkSide JSSLoader PILLOWMINT REvil
2021-08-30CrowdStrikeMichael Dawson
Hypervisor Jackpotting, Part 2: eCrime Actors Increase Targeting of ESXi Servers with Ransomware
Babuk HelloKitty REvil
2021-08-26CrowdStrikeYaron Zinar
NTLM Keeps Haunting Microsoft
2021-08-11CrowdStrikeLiviu Arsene
Teaching an Old Dog New Tricks: 2017 Magniber Ransomware Uses PrintNightmare Vulnerability to Infect Victims in South Korea
Magniber
2021-08-04CrowdStrikeCrowdStrike Intelligence Team, CrowdStrike IR, Falcon OverWatch Team
PROPHET SPIDER Exploits Oracle WebLogic to Facilitate Ransomware Activity
Cobalt Strike Egregor Mount Locker Prophet Spider
2021-08-03CrowdStrikeEric Loui, Josh Reynolds, Michael DeCristofaro
Squashing SPIDERS: Threat Intelligence, Threat Hunting and Rapid Response Stops SQL Injection Campaign
2021-07-19CrowdStrikeAspen Lindblom, Chris Sheldon, Joseph Godwin
Shlayer Malvertising Campaigns Still Using Flash Update Disguise
Shlayer
2021-07-07CrowdStrikeKaran Sood, Liviu Arsene
How CrowdStrike Falcon Stops REvil Ransomware Used in the Kaseya Attack
REvil
2021-07-06CrowdStrikeAdam Meyers
The Evolution of PINCHY SPIDER from GandCrab to REvil
Gandcrab REvil
2021-06-28CrowdStrikeAlexandru Ghita
New Ransomware Variant Uses Golang Packer
FiveHands HelloKitty
2021-06-22CrowdStrikeThe Falcon Complete Team
Response When Minutes Matter: Falcon Complete Disrupts WIZARD SPIDER eCrime Operators
Cobalt Strike
2021-06-22CrowdStrikerich seymour
Preventing Exploitation of the ZIP File Format
2021-06-18CrowdStrikeHeather Smith, Josh Dalman
Ransomware Actors Evolved Their Operations in 2020
2021-06-10CrowdStrikeFarid Hendi, Liviu Arsene
CrowdStrike Falcon Protects Customers from Recent COZY BEAR Sophisticated Phishing Campaign
2021-06-10CrowdStrikeFalcon Spotlight Team
June 2021 Patch Tuesday: Six Actively Exploited Zero-Day Vulnerabilities and More Critical CVEs
2021-06-08CrowdStrikePatrick Bennett
UAL Thank Us Later: Leveraging User Access Logging for Forensic Investigations
2021-06-08CrowdStrikeHanno Heinrichs, Heather Smith
Another Brick in the Wall: eCrime Groups Leverage SonicWall VPN Vulnerability
2021-06-02CrowdStrikeHeather Smith, Josh Dalman
Under Attack: Protecting Against Conti, DarkSide, REvil and Other Ransomware
DarkSide Conti DarkSide REvil
2021-05-20CrowdStrikejoshua fraser
Response When Minutes Matter: When Good Tools Are Used for (R)Evil
REvil