Click here to download all references as Bib-File.
| 2021-05-17 ⋅ Gigamon ⋅ Tracking DarkSide and Ransomware: The Network View DarkSide DarkSide |
| 2021-05-13 ⋅ Stranded on Pylos Blog ⋅ Mind the (Air) Gap DarkSide |
| 2021-05-05 ⋅ Profero ⋅ Cuba Ransomware Group on a Roll Cuba Ransomware |
| 2021-04-29 ⋅ DomainTools ⋅ Leaping Down a Rabbit Hole of Fraud and Misdirection |
| 2021-04-22 ⋅ DomainTools ⋅ An Undersea Royal Road: Exploring Malicious Documents and Associated Malware |
| 2021-04-17 ⋅ YouTube (Worcester DEFCON Group) ⋅ Inside IcedID: Anatomy Of An Infostealer IcedID |
| 2021-04-01 ⋅ DomainTools ⋅ COVID-19 Phishing With a Side of Cobalt Strike Cobalt Strike |
| 2021-03-16 ⋅ Elastic ⋅ Detecting Cobalt Strike with memory signatures Cobalt Strike |
| 2021-03-10 ⋅ DomainTools ⋅ Examining Exchange Exploitation and its Lessons for Defenders CHINACHOPPER |
| 2021-03-03 ⋅ DomainTools ⋅ Centreon to Exim and Back: On the Trail of Sandworm Exaramel PAS |
| 2021-02-25 ⋅ DomainTools ⋅ The Continuous Conundrum of Cloud Atlas |
| 2021-02-11 ⋅ DomainTools ⋅ Visibility, Monitoring, and Critical Infrastructure Security Industroyer Stuxnet Triton |
| 2021-02-09 ⋅ Stranded on Pylos Blog ⋅ Water, Water Everywhere – But Nary a Hacker to Blame |
| 2021-01-22 ⋅ DomainTools ⋅ Change in Perspective on the Utility of SUNBURST-related Network Indicators SUNBURST |
| 2021-01-14 ⋅ DomainTools ⋅ The Devil’s in the Details: SUNBURST Attribution SUNBURST |
| 2021-01-06 ⋅ DomainTools ⋅ Holiday Bazar: Tracking a TrickBot-Related Ransomware Incident BazarBackdoor TrickBot |
| 2021-01-04 ⋅ Profero ⋅ APT27 Turns to Ransomware Clambling |
| 2020-12-23 ⋅ Stranded on Pylos Blog ⋅ Mindmap on Russia-linked threat groups |
| 2020-12-18 ⋅ DomainTools ⋅ Continuous Eruption: Further Analysis of the SolarWinds Supply Chain Incident SUNBURST |
| 2020-12-14 ⋅ DomainTools ⋅ Unraveling Network Infrastructure Linked to the SolarWinds Hack SUNBURST |