Click here to download all references as Bib-File.
2022-05-11 ⋅ IronNet ⋅ Detecting a MUMMY SPIDER campaign and Emotet infection Emotet |
2022-05-08 ⋅ IronNet ⋅ Tracking Cobalt Strike Servers Used in Cyberattacks on Ukraine Cobalt Strike |
2021-12-20 ⋅ IronNet ⋅ Detecting anomalous network traffic resulting from a successful Log4j attack |
2021-11-19 ⋅ IronNet ⋅ Is a coordinated cyberattack brewing in the escalating Russian-Ukrainian conflict? |
2021-11-16 ⋅ IronNet ⋅ How IronNet's Behavioral Analytics Detect REvil and Conti Ransomware Cobalt Strike Conti IcedID REvil |
2021-10-12 ⋅ IronNet ⋅ Continued Exploitation of CVE-2021-26084 |
2021-02-19 ⋅ Palo Alto Networks Unit 42 ⋅ IronNetInjector: Turla’s New Malware Loading Tool Agent.BTZ IronNetInjector TurlaRPC |
2020-12-31 ⋅ IronNet ⋅ SolarWinds/SUNBURST: Behavioral analytics and Collective Defense in action SUNBURST |
2020-12-24 ⋅ IronNet ⋅ China cyber attacks: the current threat landscape PLEAD TSCookie FlowCloud Lookback PLEAD PlugX Quasar RAT Winnti |
2020-12-21 ⋅ IronNet ⋅ SolarWinds/SUNBURST: DGA or DNS Tunneling? SUNBURST |
2020-12-21 ⋅ IronNet ⋅ Russian cyber attack campaigns and actors WellMail elf.wellmess Agent.BTZ BlackEnergy EternalPetya Havex RAT Industroyer Ryuk Triton WellMess |
2020-02-06 ⋅ IronNet ⋅ DNS Tunneling Series, Part 3: The Siren Song of RogueRobin RogueRobin |
2019-09-18 ⋅ IronNet ⋅ Chirp of the PoisonFrog BONDUPDATER |