Click here to download all references as Bib-File.•
| 2023-08-29
⋅
FBI
⋅
FBI, Partners Dismantle Qakbot Infrastructure in Multinational Cyber Takedown QakBot |
| 2023-08-29
⋅
US Department of Justice
⋅
Documents and Resources related to the Disruption of the QakBot Malware and Botnet QakBot |
| 2023-08-29
⋅
Secureworks
⋅
Law Enforcement Takes Down QakBot QakBot |
| 2023-08-29
⋅
US Department of Justice
⋅
Qakbot Malware Disrupted in International Cyber Takedown QakBot |
| 2023-08-29
⋅
The Shadowserver Foundation
⋅
Qakbot Botnet Disruption QakBot |
| 2023-08-28
⋅
Microsoft
⋅
Defender Experts Chronicles: A Deep Dive into Storm-0867 Storm-0867 |
| 2023-08-28
⋅
Twitter (@MsftSecIntel)
⋅
Tweet on AiTM phishing trends Storm-1295 |
| 2023-08-28
⋅
⋅
360
⋅
APT-C-55 (Kimsuky) organization uses Korean domain names for malicious activities |
| 2023-08-28
⋅
Gamaredon Activity amid Ukraine's Counteroffensive Pteranodon |
| 2023-08-28
⋅
Github (cocomelonc)
⋅
Malware and cryptography 20: encrypt/decrypt payload via Skipjack. Simple C++ example. |
| 2023-08-28
⋅
Juniper
⋅
DreamBus Botnet Resurfaces, Targets RocketMQ vulnerability DreamBus |
| 2023-08-28
⋅
JPCERT/CC
⋅
MalDoc in PDF - Detection bypass by embedding a malicious Word file into a PDF file – |
| 2023-08-28
⋅
The DFIR Report
⋅
HTML Smuggling Leads to Domain Wide Ransomware Cobalt Strike IcedID Nokoyawa Ransomware |
| 2023-08-26
⋅
BushidoToken Blog
⋅
Tracking Adversaries: Scattered Spider, the BlackCat affiliate BlackLotus POORTRY |
| 2023-08-26
⋅
rmceoin.github.io
⋅
ClearFake Malware Analysis ClearFake |
| 2023-08-25
⋅
Telekom
⋅
Shining some light on the DarkGate loader DarkGate |
| 2023-08-25
⋅
Github (telekom-security)
⋅
DarkGate configuration extractor DarkGate |
| 2023-08-25
⋅
Github (muha2xmad)
⋅
Technical analysis of WarZoneRAT malware Ave Maria |
| 2023-08-25
⋅
Github (muha2xmad)
⋅
Warzone RAT configuration extractor Ave Maria |
| 2023-08-24
⋅
circleid
⋅
Signs of MuddyWater Developments Found in the DNS PhonyC2 Storm-1084 |