Click here to download all references as Bib-File.•
| 2021-01-25
⋅
Trend Micro
⋅
Fake Office 365 Used for Phishing Attacks on C-Suite Targets |
| 2021-01-25
⋅
CYBER GEEKS All Things Infosec
⋅
A detailed analysis of ELMER Backdoor used by APT16 ELMER |
| 2021-01-25
⋅
ZenGo
⋅
Ungilded Secrets: A New Paradigm for Key Security SUNBURST |
| 2021-01-25
⋅
SOC Prime
⋅
Affiliates vs Hunters: Fighting the DarkSide DarkSide |
| 2021-01-25
⋅
Medium CSIS Techblog
⋅
The Nemty affiliate model Nemty |
| 2021-01-25
⋅
Twitter (@IntelAdvanced)
⋅
Tweet on Ryuk Ransomware group's post exploitation tactics including usage of Keethief tool Ryuk |
| 2021-01-25
⋅
Netresec
⋅
Twenty-three SUNBURST Targets Identified SUNBURST |
| 2021-01-24
⋅
malwareandstuff blog
⋅
Catching Debuggers with Section Hashing |
| 2021-01-24
⋅
evotec
⋅
The only command you will ever need to understand and fix your Group Policies (GPO) |
| 2021-01-24
⋅
Darren’s Website
⋅
VisualDoor: SonicWall SSL-VPN Exploit |
| 2021-01-24
⋅
Medium vrieshd
⋅
Finding SUNBURST victims and targets by using passive DNS, OSINT SUNBURST |
| 2021-01-24
⋅
Medium nasbench
⋅
Common Tools & Techniques Used By Threat Actors and Malware — Part I |
| 2021-01-24
⋅
Bleeping Computer
⋅
Another ransomware (Avaddon) now uses DDoS attacks to force victims to pay Avaddon |
| 2021-01-23
⋅
Youtube (MalwareAnalysisForHedgehogs)
⋅
Malware Analysis - Fileless GooLoad static analysis and unpacking |
| 2021-01-23
⋅
vxhive blog
⋅
Deep Dive Into SectopRat SectopRAT |
| 2021-01-23
⋅
Johannes Bader's Blog
⋅
Yet Another Bazar Loader DGA BazarBackdoor |
| 2021-01-23
⋅
NCC Group
⋅
RIFT: Analysing a Lazarus Shellcode Execution Method |
| 2021-01-22
⋅
Quick Heal
⋅
Stay Alert, Joker still making its way on Google Play Store! Joker |
| 2021-01-22
⋅
360 netlab
⋅
Necro is going to version 3 and using PyInstaller and DGA N3Cr0m0rPh |
| 2021-01-22
⋅
Twitter (@bryceabdo)
⋅
Tweet on GRIMAGENT malware used by UNC1878 during some #RYUK intrusions in 2020 GRIMAGENT |