Click here to download all references as Bib-File.•
2022-08-17
⋅
VirusTotal
⋅
Hunting Follina |
2022-08-08
⋅
Medium CSIS Techblog
⋅
An inside view of domain anonymization as-a-service — the BraZZZerSFF infrastructure Riltok magecart Anubis Azorult BetaBot Buer CoalaBot CryptBot DiamondFox DreamBot GCleaner ISFB Loki Password Stealer (PWS) MedusaLocker MeguminTrojan Nemty PsiX RedLine Stealer SmokeLoader STOP TinyNuke Vidar Zloader |
2022-08-04
⋅
Netskope
⋅
Ousaban: LATAM Banking Malware Abusing Cloud Services Ousaban |
2022-08-03
⋅
CyberScoop
⋅
Environmental hacktivists publish 2 terabytes of mining company emails Guacamaya |
2022-08-03
⋅
Palo Alto Networks Unit 42
⋅
Flight of the Bumblebee: Email Lures and File Sharing Services Lead to Malware BazarBackdoor BumbleBee Cobalt Strike Conti |
2022-08-02
⋅
Zscaler
⋅
Large-Scale AiTM Attack targeting enterprise users of Microsoft email services |
2022-08-02
⋅
Zscaler
⋅
Large-Scale AiTM Attack targeting enterprise users of Microsoft email services |
2022-07-24
⋅
Bleeping Computer
⋅
QBot phishing uses Windows Calculator sideloading to infect devices QakBot |
2022-07-20
⋅
Freebuf
⋅
Abused Slack Service: Analysis of APT29's Attack on Italy Unidentified 098 (APT29 Slack Downloader) |
2022-07-19
⋅
⋅
Cert-AgID
⋅
Analysis and technical insights on the Coper malware used to attack mobile devices Coper |
2022-07-19
⋅
Palo Alto Networks Unit 42
⋅
Russian APT29 Hackers Use Online Storage Services, DropBox and Google Drive Cobalt Strike EnvyScout Gdrive |
2022-07-19
⋅
Palo Alto Networks Unit 42
⋅
Russian APT29 Hackers Use Online Storage Services, DropBox and Google Drive Cobalt Strike EnvyScout Gdrive |
2022-07-08
⋅
Sekoia
⋅
Vice Society: a discreet but steady double extortion ransomware group HelloKitty Zeppelin |
2022-07-08
⋅
Sekoia
⋅
Vice Society: a discreet but steady double extortion ransomware group HelloKitty |
2022-07-08
⋅
Blueliv
⋅
Ransomware as a Service: Behind the Scenes |
2022-07-07
⋅
Cybereason
⋅
THREAT ALERT: Raspberry Robin Worm Abuses Windows Installer and QNAP Devices Raspberry Robin |
2022-07-06
⋅
Trend Micro
⋅
Brand-New HavanaCrypt Ransomware Poses as Google Software Update App, Uses Microsoft Hosting Service IP Address as C&C Server HavanaCrypt |
2022-07-06
⋅
Trend Micro
⋅
Brand-New HavanaCrypt Ransomware Poses as Google Software Update App, Uses Microsoft Hosting Service IP Address as C&C Server HavanaCrypt |
2022-07-06
⋅
Trend Micro
⋅
Brand-New HavanaCrypt Ransomware Poses as Google Software Update App, Uses Microsoft Hosting Service IP Address as C&C Server HavanaCrypt |
2022-07-06
⋅
Trend Micro
⋅
Brand-New HavanaCrypt Ransomware Poses as Google Software Update App, Uses Microsoft Hosting Service IP Address as C&C Server HavanaCrypt |