Click here to download all references as Bib-File.•
2024-11-07
⋅
Cisco Talos
⋅
Unwrapping the emerging Interlock ransomware attack Rhysida |
2024-10-31
⋅
Twitter (@nextronresearch)
⋅
Tweet about discovery of HellDown ransomware HellDown |
2024-10-30
⋅
Palo Alto Networks Unit 42
⋅
Jumpy Pisces Engages in Play Ransomware Dtrack MimiKatz PLAY Sliver |
2024-10-24
⋅
Cisco Talos
⋅
Writing a BugSleep C2 server and detecting its traffic with Snort bugsleep |
2024-10-24
⋅
Hunt.io
⋅
Rekoobe Backdoor Discovered in Open Directory, Possibly Targeting TradingView Users Rekoobe |
2024-10-23
⋅
Cisco Talos
⋅
Highlighting TA866/Asylum Ambuscade Activity Since 2021 WasabiSeed Cobalt Strike csharp-streamer RAT Resident Rhadamanthys WarmCookie |
2024-10-23
⋅
Cisco Talos
⋅
Threat Spotlight: WarmCookie/BadSpace Cobalt Strike csharp-streamer RAT WarmCookie |
2024-10-22
⋅
Cisco Talos
⋅
Threat actor abuses Gophish to deliver new PowerRAT and DCRAT PowerRAT |
2024-10-17
⋅
Cisco Talos
⋅
UAT-5647 targets Ukrainian and Polish entities with RomCom malware variants MeltingClaw ROMCOM RAT ShadyHammock RomCom |
2024-10-16
⋅
⋅
ASEC
⋅
An Lab and the National Cyber Security Center (NCSC), joint report distribution and Microsoft browser 0-DAY discovery (CVE-2024-38178) |
2024-09-26
⋅
Palo Alto Networks Unit 42
⋅
Unraveling Sparkling Pisces’s Tool Set: KLogEXE and FPSpy FPSpy KLogEXE Kimsuky |
2024-08-28
⋅
Talos Intelligence
⋅
BlackByte blends tried-and-true tradecraft with newly disclosed vulnerabilities to support ongoing attacks BlackByte |
2024-08-21
⋅
Cisco Talos
⋅
MoonPeak malware from North Korean actors unveils new details on attacker infrastructure MoonPeak XenoRAT UAT-5394 |
2024-08-02
⋅
Aqua Nautilus
⋅
Panamorfi: A New Discord DDoS Campaign Mineping |
2024-07-23
⋅
Hunt.io
⋅
A Simple Approach to Discovering Oyster Backdoor Infrastructure Broomstick |
2024-07-10
⋅
Akamai
⋅
CVE-2024-4577 Exploits in the Wild One Day After Disclosure Tsunami Ghost RAT xmrig |
2024-06-28
⋅
cocomelonc
⋅
Malware development trick 42: Stealing data via legit Discord Bot API. Simple C example. |
2024-06-20
⋅
Cleafy
⋅
Medusa Reborn: A New Compact Variant Discovered Medusa TangleBot |
2024-06-19
⋅
AT&T
⋅
LevelBlue Labs Discovers Highly Evasive, New Loader Targeting Chinese Organizations SquidLoader |
2024-06-17
⋅
Trellix
⋅
Info Stealing Campaign Uses DLL Sideloading Through Legitimate Cisco Webex’s Binaries for Initial Execution and Defense Evasion HijackLoader Lumma Stealer |