Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2024-08-29NetskopeLeandro Froes
Latrodectus Rapid Evolution Continues With Latest New Payload Features
Latrodectus
2024-08-29SecuronixDen Iyzvyk, Tim Peck
From Cobalt Strike to Mimikatz: A Deep Dive into the SLOW#TEMPEST Campaign Targeting Chinese Users
Cobalt Strike MimiKatz
2024-08-29Hunt.ioHunt.io
Latrodectus Malware Masquerades as AhnLab Security Software to Infect Victims
Latrodectus
2024-08-28Bleeping ComputerBill Toulas
PoorTry Windows driver evolves into a full-featured EDR wiper
POORTRY
2024-08-28ESET ResearchRomain Dumont
Analysis of two arbitrary code execution vulnerabilities affecting WPS Office
SpyGrace
2024-08-28ESET ResearchESET Research
ESET Research: Spy group exploits WPS Office zero day; analysis uncovers a second vulnerability
SpyGrace
2024-08-28Help Net SecurityHelp Net Security
APT group exploits WPS Office for Windows RCE vulnerability (CVE-2024-7262)
2024-08-28Talos IntelligenceCraig Jackson, James Nutland, Terryn Valikodath
BlackByte blends tried-and-true tradecraft with newly disclosed vulnerabilities to support ongoing attacks
BlackByte
2024-08-27DailyDarkWebDailyDarkWeb
Threat Actor Claimed to Breach Database of DimeCuba
SILKFIN AGENCY
2024-08-27LumenBlack Lotus Labs
Taking the Crossroads: The Versa Director Zero-Day Exploitation
VersaMem
2024-08-27SonicWallSecurity News
AutoIT Bot Targets Gmail Accounts First
2024-08-26NetskopeLeandro Froes
Static Unpacker for Latrodectus
Latrodectus
2024-08-26The DFIR ReportThe DFIR Report
BlackSuit Ransomware
BlackSuit Cobalt Strike SystemBC
2024-08-24YouTube (Black Hat)Charles Li, Che Chang, Greg Chen
Chinese APT: A Master of Exploiting Edge Devices (Video)
SEASPY UNC4841
2024-08-23ITOCHUSuguru Ishimaru, Yusuke Niwa
Pirates of The Nang Hai: Follow the Artifacts No One Know
Cobalt Strike Xiangoop
2024-08-23TEAMT5Still Hsu
Sailing the Seven SEAs: Deep Dive into Polaris' Arsenal and Intelligence Insights
Cobalt Strike Hodur PlugX TONESHELL
2024-08-23DailyDarkWebDailyDarkWeb
A Threat Actor Alleged Breach of Sri Lankan Farmers Community Database
SILKFIN AGENCY
2024-08-22S2W Inc.S2W
Analysis of the North Korea-backed puNK-003’s Lilith RAT ported to AutoIt Script
Lilith puNK-003
2024-08-22MandiantAaron Lee, Praveeth DSouza
PEAKLIGHT: Decoding the Stealthy Memory-Only Malware
CryptBot Emmenhtal HijackLoader Lumma Stealer
2024-08-22DFIR.chStephan Berger
Botnet Fenix
Fenix