Click here to download all references as Bib-File.•
| 2021-01-08
⋅
0xC0DECAFE
⋅
The malware analyst’s guide to aPLib decompression ISFB Rovnix |
| 2021-01-07
⋅
Github (hvs-consulting)
⋅
Lazarus / APT37 IOCs Lazarus Group |
| 2021-01-07
⋅
TRUESEC
⋅
Avoiding supply-chain attacks similar to SolarWinds Orion’s (SUNBURST) SUNBURST |
| 2021-01-07
⋅
Symantec
⋅
SolarWinds: How a Rare DGA Helped Attacker Communications Fly Under the Radar SUNBURST |
| 2021-01-07
⋅
CyberArk
⋅
Meet Oski Stealer: An In-depth Analysis of the Popular Credential Stealer Oski Stealer |
| 2021-01-07
⋅
Palo Alto Networks Unit 42
⋅
TA551: Email Attack Campaign Switches from Valak to IcedID IcedID |
| 2021-01-07
⋅
Twitter (@campuscodi)
⋅
Tweet on London's Hackney Council attacked by Pysa/Mespinoza ransomware Mespinoza |
| 2021-01-07
⋅
Recorded Future
⋅
Aversary Infrastructure Report 2020: A Defender's View Octopus pupy Cobalt Strike Empire Downloader Meterpreter PoshC2 |
| 2021-01-07
⋅
Advanced Intelligence
⋅
Crime Laundering Primer: Inside Ryuk Crime (Crypto) Ledger & Risky Asian Crypto Traders Ryuk |
| 2021-01-07
⋅
ClearSky
⋅
Operation ‘Kremlin’ Unidentified 002 (Operation Kremlin) |
| 2021-01-07
⋅
AT&T
⋅
Malware using new Ezuri memory loader Cephei |
| 2021-01-06
⋅
CISA
⋅
Supply Chain Compromise SUNBURST |
| 2021-01-06
⋅
SecureCoding
⋅
All About Doki Malware Doki |
| 2021-01-06
⋅
Mimecast
⋅
How to Slam a Door on the Cutwail Botnet: Enforce DMARC Cutwail |
| 2021-01-06
⋅
Bleeping Computer
⋅
Hackers start exploiting the new backdoor in Zyxel devices |
| 2021-01-06
⋅
FBI
⋅
PIN Number 20210106-001: Egregor Ransomware Targets Businesses Worldwide, Attempting to Extort Businesses by Publicly Releasing Exfiltrated Data Egregor QakBot |
| 2021-01-06
⋅
Trend Micro
⋅
Expanding Range and Improving Speed: A RansomExx Approach RansomEXX |
| 2021-01-06
⋅
Trustwave
⋅
A Trump Sex Video? No, It's a RAT! QRat |
| 2021-01-06
⋅
MITRE
⋅
ATT&CK Navigator layer for UNC2452 SUNBURST |
| 2021-01-06
⋅
Github (SentinelLabs)
⋅
SolarWinds_Countermeasures SUNBURST |