Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2020-12-16Twitter @cybercdh)Colin Hardy
Tweet on 3 key actions SUNBURST performs as soon as it's invoked
SUNBURST
2020-12-16Click All the Things! BlogJamie
Snake/404 Keylogger, BIFF, and Covering Tracks?: An unusual maldoc
2020-12-16CloudflareJesse Kipp, Malavika Balachandran Tadeusz
Trend data on the SolarWinds Orion compromise
SUNBURST
2020-12-16Bleeping ComputerLawrence Abrams
FireEye, Microsoft create kill switch for SolarWinds backdoor
SUNBURST
2020-12-16MicrosoftShain Wray
SolarWinds Post-Compromise Hunting with Azure Sentinel
SUNBURST
2020-12-16QianxinRed Raindrop Team
中招目标首次披露:SolarWinds供应链攻击相关域名生成算法可破解!
SUNBURST
2020-12-16Twitter (@FireEye)FireEye
Tweet on SUNBURST from FireEye detailing some additional information
SUNBURST
2020-12-16GuidePoint SecurityWes Riley
SUPERNOVA SolarWinds .NET Webshell Analysis
SUPERNOVA
2020-12-16Twitter (@0xrb)R. Bansal
List of domain infrastructure including DGA domain used by UNC2452
SUNBURST
2020-12-16Intel 471Intel 471
Intel471's full statement on their knowledge of SolarWinds and the cybercriminal underground
SUNBURST
2020-12-16RiskIQCory Kennedy, Jordan Herman, Mia Ihm
Skimming a Little Off the Top: Meyhod’s Skimming Methods Hit Hairloss Specialists
magecart
2020-12-16ReversingLabsTomislav Pericin
SunBurst: the next level of stealth SolarWinds compromise exploited through sophistication and patience
SUNBURST
2020-12-16DragosCamille Singleton, IBM SECURITY X-FORCE, Selena Larson
Assessing Ransomware and Extortion Activities Impacting Industrial Organizations: Ransomware in ICS Environments
REvil
2020-12-16Github (RedDrip7)RedDrip7
A script to decode SUNBURST DGA domain
SUNBURST
2020-12-16ReutersRaphael Satter
Exclusive-Suspected Chinese hackers stole camera footage from African Union - memo
2020-12-16LookoutApurva Kumar, Diane Wee, Justin Albrecht, Robert Nickle
Lookout Discovers New Spyware Used by Sextortionists to Blackmail iOS and Android Users
goontact
2020-12-16AccenturePaul Mansfield
Tracking and combatting an evolving danger: Ransomware extortion
DarkSide Egregor Maze Nefilim RagnarLocker REvil Ryuk SunCrypt
2020-12-16SophosLabs UncutSean Gallagher, Sivagnanam Gn
Ransomware operators use SystemBC RAT as off-the-shelf Tor backdoor
SystemBC
2020-12-16Johannes Bader's BlogJohannes Bader
Next Version of the Bazar Loader DGA
BazarBackdoor
2020-12-15HvS-Consulting AGHvS-Consulting AG
Greetings from Lazarus Anatomy of a cyber espionage campaign
BLINDINGCAN HTTP(S) uploader MimiKatz