Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2021-08-14Check Point ResearchCheckpoint Research
@online{research:20210814:indra:aa5bbe8, author = {Checkpoint Research}, title = {{Indra — Hackers Behind Recent Attacks on Iran}}, date = {2021-08-14}, organization = {Check Point Research}, url = {https://research.checkpoint.com/2021/indra-hackers-behind-recent-attacks-on-iran/}, language = {English}, urldate = {2021-08-16} } Indra — Hackers Behind Recent Attacks on Iran
Meteor
2021-07-27Check PointAlexey Bukhteyev, Raman Ladutska
@online{bukhteyev:20210727:timeproven:d927632, author = {Alexey Bukhteyev and Raman Ladutska}, title = {{Time-proven tricks in a new environment: the macOS evolution of Formbook}}, date = {2021-07-27}, organization = {Check Point}, url = {https://research.checkpoint.com/2021/time-proven-tricks-in-a-new-environment-the-macos-evolution-of-formbook/}, language = {English}, urldate = {2021-07-29} } Time-proven tricks in a new environment: the macOS evolution of Formbook
Xloader
2021-07-21Check PointCheck Point Research
@online{research:20210721:top:9329aad, author = {Check Point Research}, title = {{Top prevalent malware with a thousand campaigns migrates to macOS}}, date = {2021-07-21}, organization = {Check Point}, url = {https://research.checkpoint.com/2021/top-prevalent-malware-with-a-thousand-campaigns-migrates-to-macos/}, language = {English}, urldate = {2021-07-26} } Top prevalent malware with a thousand campaigns migrates to macOS
Xloader
2021-07-01Check PointCheck Point Research
@online{research:20210701:indigozebra:b9e8c55, author = {Check Point Research}, title = {{IndigoZebra APT continues to attack Central Asia with evolving tools}}, date = {2021-07-01}, organization = {Check Point}, url = {https://research.checkpoint.com/2021/indigozebra-apt-continues-to-attack-central-asia-with-evolving-tools/}, language = {English}, urldate = {2021-08-03} } IndigoZebra APT continues to attack Central Asia with evolving tools
xCaon
2021-06-02Check Point ResearchCheck Point Research
@online{research:20210602:sharppanda:5a21952, author = {Check Point Research}, title = {{SharpPanda: Chinese APT Group Targets Southeast Asian Government With Previously Unknown Backdoor}}, date = {2021-06-02}, organization = {Check Point Research}, url = {https://research.checkpoint.com/2021/chinese-apt-group-targets-southeast-asian-government-with-previously-unknown-backdoor/}, language = {English}, urldate = {2021-06-04} } SharpPanda: Chinese APT Group Targets Southeast Asian Government With Previously Unknown Backdoor
2021-05-27Check PointCheck Point Research
@online{research:20210527:uyghurs:ee8be99, author = {Check Point Research}, title = {{Uyghurs, a Turkic ethnic minority in China, targeted via fake foundations - Check Point Research}}, date = {2021-05-27}, organization = {Check Point}, url = {https://research.checkpoint.com/2021/uyghurs-a-turkic-ethnic-minority-in-china-targeted-via-fake-foundations/}, language = {English}, urldate = {2021-06-16} } Uyghurs, a Turkic ethnic minority in China, targeted via fake foundations - Check Point Research
2021-05-26Check PointAlex Ilgayev
@online{ilgayev:20210526:melting:40f5caf, author = {Alex Ilgayev}, title = {{Melting Ice – Tracking IcedID Servers with a few simple steps}}, date = {2021-05-26}, organization = {Check Point}, url = {https://research.checkpoint.com/2021/melting-ice-tracking-icedid-servers-with-a-few-simple-steps/}, language = {English}, urldate = {2021-06-09} } Melting Ice – Tracking IcedID Servers with a few simple steps
IcedID
2021-04-22Check PointOmer Hofman
@online{hofman:20210422:turning:5a7be75, author = {Omer Hofman}, title = {{Turning Telegram toxic: ‘ToxicEye’ RAT is the latest to use Telegram for command & control}}, date = {2021-04-22}, organization = {Check Point}, url = {https://blog.checkpoint.com/2021/04/22/turning-telegram-toxic-new-toxiceye-rat-is-the-latest-to-use-telegram-for-command-control/}, language = {English}, urldate = {2021-04-28} } Turning Telegram toxic: ‘ToxicEye’ RAT is the latest to use Telegram for command & control
ToxicEye
2021-04-08CheckpointCheck Point Research
@online{research:20210408:irans:127f349, author = {Check Point Research}, title = {{Iran’s APT34 Returns with an Updated Arsenal}}, date = {2021-04-08}, organization = {Checkpoint}, url = {https://research.checkpoint.com/2021/irans-apt34-returns-with-an-updated-arsenal/}, language = {English}, urldate = {2021-04-09} } Iran’s APT34 Returns with an Updated Arsenal
DNSpionage SideTwist TONEDEAF
2021-04-07Check Point ResearchAviran Hazum, Bodgan Melnykov, Israel Wenik
@online{hazum:20210407:new:791d14e, author = {Aviran Hazum and Bodgan Melnykov and Israel Wenik}, title = {{New Wormable Android Malware Spreads by Creating Auto-Replies to Messages in WhatsApp}}, date = {2021-04-07}, organization = {Check Point Research}, url = {https://research.checkpoint.com/2021/new-wormable-android-malware-spreads-by-creating-auto-replies-to-messages-in-whatsapp/}, language = {English}, urldate = {2021-04-09} } New Wormable Android Malware Spreads by Creating Auto-Replies to Messages in WhatsApp
2021-03-11Check Point ResearchAlex Ilgayev
@online{ilgayev:20210311:playing:02bde36, author = {Alex Ilgayev}, title = {{Playing in the (Windows) Sandbox}}, date = {2021-03-11}, organization = {Check Point Research}, url = {https://research.checkpoint.com/2021/playing-in-the-windows-sandbox/}, language = {English}, urldate = {2021-03-16} } Playing in the (Windows) Sandbox
2021-03-11Check PointAdi Ikan, Lotem Finkelsteen, Yaniv Balmas, Sagi Tzadik
@online{ikan:20210311:exploits:2bf3a8a, author = {Adi Ikan and Lotem Finkelsteen and Yaniv Balmas and Sagi Tzadik}, title = {{Exploits on Organizations Worldwide Tripled after Microsoft’s Revelation of Four Zero-days}}, date = {2021-03-11}, organization = {Check Point}, url = {https://blog.checkpoint.com/2021/03/11/exploits-on-organizations-worldwide/}, language = {English}, urldate = {2021-03-16} } Exploits on Organizations Worldwide Tripled after Microsoft’s Revelation of Four Zero-days
2021-03-09Check Point ResearchAviran Hazum, Bohdan Melnykov, Israel Wernik
@online{hazum:20210309:clast82:8a3878c, author = {Aviran Hazum and Bohdan Melnykov and Israel Wernik}, title = {{Clast82 – A new Dropper on Google Play Dropping the AlienBot Banker and MRAT}}, date = {2021-03-09}, organization = {Check Point Research}, url = {https://research.checkpoint.com/2021/clast82-a-new-dropper-on-google-play-dropping-the-alienbot-banker-and-mrat/}, language = {English}, urldate = {2021-03-11} } Clast82 – A new Dropper on Google Play Dropping the AlienBot Banker and MRAT
Alien
2021-02-22Check Point ResearchEyal Itkin, Itay Cohen
@online{itkin:20210222:story:6f59f06, author = {Eyal Itkin and Itay Cohen}, title = {{The Story of Jian – How APT31 Stole and Used an Unknown Equation Group 0-Day}}, date = {2021-02-22}, organization = {Check Point Research}, url = {https://research.checkpoint.com/2021/the-story-of-jian/}, language = {English}, urldate = {2021-02-25} } The Story of Jian – How APT31 Stole and Used an Unknown Equation Group 0-Day
2021-02-22Check Point ResearchEyal Itkin, Itay Cohen
@online{itkin:20210222:story:a3a3da9, author = {Eyal Itkin and Itay Cohen}, title = {{The Story of Jian – How APT31 Stole and Used an Unknown Equation Group 0-Day}}, date = {2021-02-22}, organization = {Check Point Research}, url = {https://research.checkpoint.com/2021/the-story-of-jian}, language = {English}, urldate = {2021-07-22} } The Story of Jian – How APT31 Stole and Used an Unknown Equation Group 0-Day
APT31
2021-02-16Check PointCheck Point Research
@online{research:20210216:apomacrosploit:91549e1, author = {Check Point Research}, title = {{ApoMacroSploit: Apocalyptical FUD race}}, date = {2021-02-16}, organization = {Check Point}, url = {https://research.checkpoint.com/2021/apomacrosploit-apocalyptical-fud-race/}, language = {English}, urldate = {2021-02-20} } ApoMacroSploit: Apocalyptical FUD race
BitRAT
2021-02-08CheckpointCheck Point Research
@online{research:20210208:domestic:202aaca, author = {Check Point Research}, title = {{Domestic Kitten – An Inside Look at the Iranian Surveillance Operations}}, date = {2021-02-08}, organization = {Checkpoint}, url = {https://research.checkpoint.com/2021/domestic-kitten-an-inside-look-at-the-iranian-surveillance-operations/}, language = {English}, urldate = {2021-02-09} } Domestic Kitten – An Inside Look at the Iranian Surveillance Operations
FurBall
2021-01-28Check PointLior Sonntag
@online{sonntag:20210128:deep:99eb275, author = {Lior Sonntag}, title = {{Deep into the SunBurst Attack}}, date = {2021-01-28}, organization = {Check Point}, url = {https://research.checkpoint.com/2021/deep-into-the-sunburst-attack/}, language = {English}, urldate = {2021-02-02} } Deep into the SunBurst Attack
SUNBURST
2021-01-04Check PointCheck Point Research
@online{research:20210104:dridex:2741eba, author = {Check Point Research}, title = {{DRIDEX Stopping Serial Killer: Catching the Next Strike}}, date = {2021-01-04}, organization = {Check Point}, url = {https://research.checkpoint.com/2021/stopping-serial-killer-catching-the-next-strike/}, language = {English}, urldate = {2021-01-05} } DRIDEX Stopping Serial Killer: Catching the Next Strike
Dridex
2020-12-22CheckpointCheck Point Research
@online{research:20201222:sunburst:f3cfd5f, author = {Check Point Research}, title = {{SUNBURST, TEARDROP and the NetSec New Normal}}, date = {2020-12-22}, organization = {Checkpoint}, url = {https://research.checkpoint.com/2020/sunburst-teardrop-and-the-netsec-new-normal/}, language = {English}, urldate = {2020-12-23} } SUNBURST, TEARDROP and the NetSec New Normal
SUNBURST TEARDROP