Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2023-07-12DragosDragos
@online{dragos:20230712:mitigating:708bc0d, author = {Dragos}, title = {{Mitigating CVE-2023-3595 and CVE-2023-3596 Impacting Rockwell Automation ControlLogix Firmware}}, date = {2023-07-12}, organization = {Dragos}, url = {https://www.dragos.com/blog/mitigating-cves-impacting-rockwell-automation-controllogix-firmware/}, language = {English}, urldate = {2023-07-13} } Mitigating CVE-2023-3595 and CVE-2023-3596 Impacting Rockwell Automation ControlLogix Firmware
2023-05-10DragosDragos
@online{dragos:20230510:deconstructing:e2efdbd, author = {Dragos}, title = {{Deconstructing a Cybersecurity Event}}, date = {2023-05-10}, organization = {Dragos}, url = {https://www.dragos.com/blog/deconstructing-a-cybersecurity-event/}, language = {English}, urldate = {2023-05-15} } Deconstructing a Cybersecurity Event
2023-05-05DragosSam Hanson
@online{hanson:20230505:deep:40a46bc, author = {Sam Hanson}, title = {{Deep Dive Into PIPEDREAM’s OPC UA Module, MOUSEHOLE}}, date = {2023-05-05}, organization = {Dragos}, url = {https://www.dragos.com/blog/pipedream-mousehole-opcua-module/}, language = {English}, urldate = {2023-05-08} } Deep Dive Into PIPEDREAM’s OPC UA Module, MOUSEHOLE
2023-04-14DragosDragos
@techreport{dragos:20230414:dragos:c3b122b, author = {Dragos}, title = {{Dragos Analyzes Russian Programs Threatening Critical Civilian Infrastructure}}, date = {2023-04-14}, institution = {Dragos}, url = {https://hub.dragos.com/hubfs/Dragos_IntelBrief_Russian-Programs-Threatening-Critical_Infrastructure.pdf}, language = {English}, urldate = {2023-04-22} } Dragos Analyzes Russian Programs Threatening Critical Civilian Infrastructure
2022-07-14DragosSam Hanson
@online{hanson:20220714:trojan:831b636, author = {Sam Hanson}, title = {{The Trojan Horse Malware & Password “Cracking” Ecosystem Targeting Industrial Operators}}, date = {2022-07-14}, organization = {Dragos}, url = {https://www.dragos.com/blog/the-trojan-horse-malware-password-cracking-ecosystem-targeting-industrial-operators/}, language = {English}, urldate = {2022-07-18} } The Trojan Horse Malware & Password “Cracking” Ecosystem Targeting Industrial Operators
Sality
2022-04-13DragosDragos
@techreport{dragos:20220413:pipedream:6135305, author = {Dragos}, title = {{PIPEDREAM: CHERNOVITE’S Emerging Malware Targeting Industrial Control Systems}}, date = {2022-04-13}, institution = {Dragos}, url = {https://hub.dragos.com/hubfs/116-Whitepapers/Dragos_ChernoviteWP_v2b.pdf}, language = {English}, urldate = {2022-04-15} } PIPEDREAM: CHERNOVITE’S Emerging Malware Targeting Industrial Control Systems
2022-04-04DragosDragos
@techreport{dragos:20220404:european:3ef1ac2, author = {Dragos}, title = {{European Industrial Infrastructure Cyber Threat Perspective}}, date = {2022-04-04}, institution = {Dragos}, url = {https://hub.dragos.com/hubfs/116-Whitepapers/Dragos_WP_EuropeThreatPerspective_April2022.pdf}, language = {English}, urldate = {2022-04-07} } European Industrial Infrastructure Cyber Threat Perspective
2022-03-25DragosConor McLaren, Dragos
@techreport{mclaren:20220325:how:05e2664, author = {Conor McLaren and Dragos}, title = {{How Dragos Activity Groups Obtain Initial Access into Industrial Environments}}, date = {2022-03-25}, institution = {Dragos}, url = {https://hub.dragos.com/hubfs/116-Whitepapers/Dragos_Intel_WP_InitAccess-IndEnvirons-Final.pdf}, language = {English}, urldate = {2022-04-12} } How Dragos Activity Groups Obtain Initial Access into Industrial Environments
MimiKatz
2022-03-16DragosJosh Hanrahan
@online{hanrahan:20220316:suspected:325fc01, author = {Josh Hanrahan}, title = {{Suspected Conti Ransomware Activity in the Auto Manufacturing Sector}}, date = {2022-03-16}, organization = {Dragos}, url = {https://www.dragos.com/blog/industry-news/suspected-conti-ransomware-activity-in-the-auto-manufacturing-sector/}, language = {English}, urldate = {2022-03-17} } Suspected Conti Ransomware Activity in the Auto Manufacturing Sector
Conti Emotet
2022-02-23DragosDragos
@techreport{dragos:20220223:2021:539931a, author = {Dragos}, title = {{2021 ICS OT Cybersecurity Year In Review}}, date = {2022-02-23}, institution = {Dragos}, url = {https://hub.dragos.com/hubfs/333%20Year%20in%20Review/2021/2021%20ICS%20OT%20Cybersecurity%20Year%20In%20Review%20-%20Dragos%202021.pdf}, language = {English}, urldate = {2022-04-12} } 2021 ICS OT Cybersecurity Year In Review
ShadowPad
2022-02-09DragosAnna Skelton
@online{skelton:20220209:dragos:89d2a68, author = {Anna Skelton}, title = {{Dragos ICS/OT Ransomware Analysis: Q4 2021}}, date = {2022-02-09}, organization = {Dragos}, url = {https://www.dragos.com/blog/industry-news/dragos-ics-ot-ransomware-analysis-q4-2021/}, language = {English}, urldate = {2022-02-14} } Dragos ICS/OT Ransomware Analysis: Q4 2021
LockBit Conti LockBit
2021-05-17DragosKent Backman
@online{backman:20210517:investigating:447e111, author = {Kent Backman}, title = {{Investigating the Watering Hole Linked to the Oldsmar Water Treatment Facility Breach}}, date = {2021-05-17}, organization = {Dragos}, url = {https://www.dragos.com/blog/investigating-the-watering-hole-linked-to-the-oldsmar-water-treatment-facility-breach/}, language = {English}, urldate = {2021-05-19} } Investigating the Watering Hole Linked to the Oldsmar Water Treatment Facility Breach
Tofsee
2021-05-11DragosMike Hoffman, Tom Winston
@online{hoffman:20210511:recommendations:d69cee0, author = {Mike Hoffman and Tom Winston}, title = {{Recommendations Following the Colonial Pipeline Cyber Attack}}, date = {2021-05-11}, organization = {Dragos}, url = {https://www.dragos.com/blog/industry-news/recommendations-following-the-colonial-pipeline-cyber-attack/}, language = {English}, urldate = {2021-05-13} } Recommendations Following the Colonial Pipeline Cyber Attack
DarkSide
2021-04-26DragosDragos
@online{dragos:20210426:new:19b4a05, author = {Dragos}, title = {{New ICS Threat Activity Group: TALONITE}}, date = {2021-04-26}, organization = {Dragos}, url = {https://www.dragos.com/blog/industry-news/new-ics-threat-activity-group-talonite/}, language = {English}, urldate = {2021-05-04} } New ICS Threat Activity Group: TALONITE
FlowCloud Lookback
2021-03-29DragosDragos
@online{dragos:20210329:new:6fccae8, author = {Dragos}, title = {{New ICS Threat Activity Group: STIBNITE}}, date = {2021-03-29}, organization = {Dragos}, url = {https://www.dragos.com/blog/industry-news/new-ics-threat-activity-group-stibnite/}, language = {English}, urldate = {2021-03-31} } New ICS Threat Activity Group: STIBNITE
Poet RAT
2021-02-24DragosDragos
@techreport{dragos:20210224:ics:772b80b, author = {Dragos}, title = {{ICS Cybersecurity Year in Review 2020}}, date = {2021-02-24}, institution = {Dragos}, url = {https://hub.dragos.com/hubfs/Year-in-Review/Dragos_2020_ICS_Cybersecurity_Year_In_Review.pdf}, language = {English}, urldate = {2021-02-25} } ICS Cybersecurity Year in Review 2020
2021-02-08DragosGus Serino
@online{serino:20210208:recommendations:7c97b3f, author = {Gus Serino}, title = {{Recommendations Following the Oldsmar Water Treatment Facility Cyber Attack}}, date = {2021-02-08}, organization = {Dragos}, url = {https://www.dragos.com/blog/industry-news/recommendations-following-the-oldsmar-water-treatment-facility-cyber-attack/}, language = {English}, urldate = {2021-02-20} } Recommendations Following the Oldsmar Water Treatment Facility Cyber Attack
2020-12-16DragosSelena Larson, Camille Singleton, IBM SECURITY X-FORCE
@techreport{larson:20201216:assessing:9a5adb8, author = {Selena Larson and Camille Singleton and IBM SECURITY X-FORCE}, title = {{Assessing Ransomware and Extortion Activities Impacting Industrial Organizations: Ransomware in ICS Environments}}, date = {2020-12-16}, institution = {Dragos}, url = {https://f.hubspotusercontent10.net/hubfs/5943619/Whitepaper-Downloads/Ransomware_in_ICS_Environments_Whitepaper_10_12_20.pdf}, language = {English}, urldate = {2020-12-17} } Assessing Ransomware and Extortion Activities Impacting Industrial Organizations: Ransomware in ICS Environments
REvil
2020-12-10DragosCasey Brooks, Selena Larson
@techreport{brooks:20201210:open:5c64c56, author = {Casey Brooks and Selena Larson}, title = {{Open Source Intelligence}}, date = {2020-12-10}, institution = {Dragos}, url = {https://f.hubspotusercontent10.net/hubfs/5943619/Whitepaper-Downloads/Dragos-OSINT-Framework.pdf}, language = {English}, urldate = {2021-01-01} } Open Source Intelligence
2020-11-12DragosDragos
@techreport{dragos:20201112:cyber:cf5b4fd, author = {Dragos}, title = {{Cyber Threat Perspective MANUFACTURING SECTOR}}, date = {2020-11-12}, institution = {Dragos}, url = {https://hub.dragos.com/hubfs/Whitepaper-Downloads/Dragos_Manufacturing%20Threat%20Perspective_1120.pdf}, language = {English}, urldate = {2020-11-18} } Cyber Threat Perspective MANUFACTURING SECTOR
Industroyer Snake