Click here to download all references as Bib-File.
2023-02-02 ⋅ YouTube (SLEUTHCON) ⋅ Lions, Tigers, and Infostealers - Oh my! RecordBreaker RedLine Stealer Vidar |
2022-01-11 ⋅ Twitter (@cglyer) ⋅ Tweet on CN based ransomware operator using log4shell to deploy NightSky NightSky BRONZE STARLIGHT |
2022-01-11 ⋅ Twitter (@cglyer) ⋅ Thread on DEV-0401, a china based ransomware operator exploiting VMware Horizon with log4shell and deploying NightSky ransomware Cobalt Strike NightSky |
2020-12-13 ⋅ FireEye ⋅ Highly Evasive Attacker Leverages SolarWinds Supply Chain to Compromise Multiple Global Victims With SUNBURST Backdoor SUNBURST SUPERNOVA TEARDROP UNC2452 |
2020-03-25 ⋅ FireEye ⋅ This Is Not a Test: APT41 Initiates Global Intrusion Campaign Using Multiple Exploits Speculoos Cobalt Strike |
2019-01-11 ⋅ FireEye ⋅ A Nasty Trick: From Credential Theft Malware to Business Disruption Ryuk TrickBot GRIM SPIDER WIZARD SPIDER |
2017-12-14 ⋅ FireEye ⋅ Attackers Deploy New ICS Attack Framework “TRITON” and Cause Operational Disruption to Critical Infrastructure Triton TEMP.Veles |
2017-10-26 ⋅ FireEye ⋅ BACKSWING - Pulling a BADRABBIT Out of a Hat EternalPetya |