Click here to download all references as Bib-File.
2022-05-11 ⋅ HP ⋅ Threat Insights Report Q1 - 2022 AsyncRAT Emotet Mekotio Vjw0rm |
2022-05-04 ⋅ HP ⋅ Tips for Automating IOC Extraction from GootLoader, a Changing JavaScript Malware GootLoader |
2022-04-12 ⋅ HP ⋅ Malware Campaigns Targeting African Banking Sector CloudEyE Remcos |
2022-03-30 ⋅ Twitter (@hpsecurity) ⋅ Tweet on recent Mekotio Banker campaign Mekotio |
2022-02-09 ⋅ Flashpoint ⋅ Russia Seizes Ferum, Sky-Fraud, UAS, and Trump’s Dumps—and Signals More Takedowns to Come |
2022-02-08 ⋅ HP ⋅ Attackers Disguise RedLine Stealer as a Windows 11 Upgrade RedLine Stealer |
2022-01-14 ⋅ HP ⋅ How Attackers Use XLL Malware to Infect Systems |
2021-12-09 ⋅ HP ⋅ Emotet’s Return: What’s Different? Emotet |
2021-11-23 ⋅ HP ⋅ RATDispenser: Stealthy JavaScript Loader Dispensing RATs into the Wild AdWind Ratty STRRAT CloudEyE Formbook Houdini Panda Stealer Remcos |
2021-11-16 ⋅ Flashpoint ⋅ RAMP Ransomware’s Apparent Overture to Chinese Threat Actors |
2021-10-18 ⋅ Flashpoint ⋅ REvil Disappears Again: ‘Something Is Rotten in the State of Ransomware’ REvil REvil |
2021-10 ⋅ HP ⋅ Threat Insights Report Q3 - 2021 STRRAT CloudEyE NetWire RC Remcos TrickBot Vjw0rm |
2021-09-29 ⋅ Flashpoint ⋅ Russian hacker Q&A: An Interview With REvil-Affiliated Ransomware Contractor REvil REvil |
2021-09-28 ⋅ Flashpoint ⋅ REvil’s “Cryptobackdoor” Con: Ransomware Group’s Tactics Roil Affiliates, Sparking a Fallout REvil |
2021-09-19 ⋅ HP ⋅ MirrorBlast and TA505: Examining Similarities in Tactics, Techniques and Procedures MirrorBlast |
2021-08-10 ⋅ Flashpoint ⋅ REvil Master Key for Kaseya Attack Posted to XSS REvil |
2021-07-30 ⋅ HP ⋅ Detecting TA551 domains Valak Dridex IcedID ISFB QakBot |
2021-07-27 ⋅ Flashpoint ⋅ Chatter Indicates BlackMatter as REvil Successor REvil |
2021-07-09 ⋅ Seqrite ⋅ Seqrite uncovers second wave of Operation SideCopy targeting Indian critical infrastructure PSUs NjRAT ReverseRAT |
2021-06-28 ⋅ HP ⋅ Snake Keylogger’s Many Skins: Analysing Code Reuse Among Infostealers 404 Keylogger Phoenix Keylogger |