Click here to download all references as Bib-File.
2023-05-23 ⋅ ESET Research ⋅ Android app breaking bad: From legitimate screen recording to file exfiltration within a year |
2023-04-26 ⋅ ESET Research ⋅ Evasive Panda APT group delivers malware via updates for popular Chinese software MgBot |
2023-04-20 ⋅ ESET Research ⋅ Linux malware strengthens links between Lazarus and the 3CX supply‑chain attack BADCALL 3CX Backdoor BADCALL IconicStealer |
2023-03-14 ⋅ ESET Research ⋅ The slow Tick‑ing time bomb: Tick APT group compromise of a DLP software developer in East Asia |
2023-03-07 ⋅ ESET Research ⋅ Love scam or espionage? Transparent Tribe lures Indian and Pakistani officials CapraRAT |
2023-03-02 ⋅ ESET Research ⋅ MQsTTang: Mustang Panda’s latest backdoor treads new ground with Qt and MQTT MQsTTang |
2023-03-01 ⋅ ESET Research ⋅ BlackLotus UEFI bootkit: Myth confirmed BlackLotus |
2023-02-23 ⋅ ESET Research ⋅ WinorDLL64: A backdoor from the vast Lazarus arsenal? WinorDLL64 |
2023-02-01 ⋅ ESET Research ⋅ Threat Report T3 2022 |
2023-01-30 ⋅ ESET Research ⋅ APT Activity Report T3 2022: Sandworm Deploying its Enhanced Wiper Arsenal |
2023-01-27 ⋅ ESET Research ⋅ Tweets on SwiftSlicer SwiftSlicer |
2023-01-27 ⋅ ESET Research ⋅ SwiftSlicer: New destructive wiper malware strikes Ukraine SwiftSlicer |
2023-01-10 ⋅ ESET Research ⋅ StrongPity espionage campaign targeting Android users |
2022-12-14 ⋅ ESET Research ⋅ Unmasking MirrorFace: Operation LiberalFace targeting Japanese political entities LODEINFO |
2022-12-07 ⋅ ESET Research ⋅ Fantasy – a new Agrius wiper deployed through a supply‑chain attack Apostle DEADWOOD |
2022-11-30 ⋅ ESET Research ⋅ Who’s swimming in South Korean waters? Meet ScarCruft’s Dolphin |
2022-11-25 ⋅ Twitter (@ESETresearch) ⋅ Twitter thread about RansomBoggs campaign against Ukraine |
2022-11-23 ⋅ ESET Research ⋅ Bahamut cybermercenary group targets Android users with fake VPN apps Bahamut |
2022-11-22 ⋅ Twitter (@ESETresearch) ⋅ Tweets on SysUpdate / Soldier / HyperSSL HyperSSL |
2022-10-11 ⋅ ESET Research ⋅ POLONIUM targets Israel with Creepy malware CreepySnail CreepExfil DeepCreep MegaCreep Unidentified 097 (Polonium Keylogger) |