Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2020-05-28Twitter (@Andrew___Morris)Andrew Morris
Tweet on Sandworm threat actor exploiting CVE-2019-10149
2020-05-28Rapid7 LabsMatthew Berninger
The Masked SYNger: Investigating a Traffic Phenomenon
2020-05-28Kaspersky LabsAlexey Kulaev, Boris Larin
The zero-day exploits of Operation WizardOpium
2020-05-28Kaspersky LabsVyacheslav Kopeytsev
Steganography in targeted attacks on industrial enterprises
MimiKatz
2020-05-28Palo Alto Networks Unit 42Brad Duncan
Goodbye Mworm, Hello Nworm: TrickBot Updates Propagation Module
TrickBot
2020-05-28Github Security LabAlvaro Muñoz
The Octopus Scanner Malware: Attacking the open source supply chain
Octopus Scanner
2020-05-28Twitter (@BushidoToken)BushidoToken
Tweet on OZH RAT
OZH RAT
2020-05-27NCC GroupAaron Greetham
Detecting Rclone – An Effective Tool for Exfiltration
2020-05-27FBIFBI
Alert Number MI-000148-MW: APT Actors Exploiting Fortinet Vulnerabilities to Gain Access for Malicious Activity
MimiKatz
2020-05-27GAIS-CERTGAIS-CERT
Dridex Banking Trojan Technical Analysis Report
Dridex
2020-05-27SophosLabsAndrew Brandt, Gabor Szappanos
Netwalker ransomware tools give insight into threat actor
Mailto
2020-05-26CrowdStrikeThe Falcon Complete Team
Falcon Complete Disrupts Malvertising Campaign Targeting AnyDesk
2020-05-26CrowdStrikeConnor McGarr
Know Your Enemy: Exploiting the Dell BIOS Driver Vulnerability to Defend Against It
2020-05-26CISAUS-CERT
Alert (AA21-116A): Russian Foreign Intelligence Service (SVR) Cyber Operations: Trends and Best Practices for Network Defenders
elf.wellmess WellMess
2020-05-26Council on Foreign RelationsGuest Blogger for Net Politics
The EU’s Response to SolarWinds
2020-05-26DataBreaches.netDissent
A former DarkSide listing shows up on REvil’s leak site
DarkSide REvil
2020-05-26Youtube (GRIMM Cyber)Konstantin Klinger
Passive DNS for Threat Detection & Hunting (Discussing some infrastructure related to APT32)
METALJACK
2020-05-26EpicTurlaJuan Andrés Guerrero-Saade
ACIDBOX Clustering
AcidBox
2020-05-26Bleeping ComputerIonut Ilascu
New [F]Unicorn ransomware hits Italy via fake COVID-19 infection map
HiddenTear
2020-05-26CrowdStrikeGuillermo Taibo
Weaponized Disk Image Files: Analysis, Trends and Remediation
Nanocore RAT