Click here to download all references as Bib-File.
2023-01-24 ⋅ eSentire ⋅ Unmasking Venom Spider More_eggs TerraPreter TerraLoader VenomLNK |
2023-01-03 ⋅ Security Joes ⋅ Raspberry Robin Detected ITW Targeting Insurance & Financial Institutes In Europe Raspberry Robin |
2022-11-23 ⋅ Stranded on Pylos Blog ⋅ Detailing Daily Domain Hunting |
2022-10-12 ⋅ SentinelOne ⋅ WIP19 Espionage | New Chinese APT Targets IT Service Providers and Telcos With Signed Malware Maggie ScreenCap |
2022-09-29 ⋅ Reuters ⋅ America’s Throwaway Spies How the CIA failed Iranian informants in its secret war with Tehran |
2022-09-14 ⋅ Security Joes ⋅ Dissecting PlugX to Extract Its Crown Jewels PlugX |
2022-08-18 ⋅ Proofpoint ⋅ Reservations Requested: TA558 Targets Hospitality and Travel AsyncRAT Loda NjRAT Ozone RAT Revenge RAT Vjw0rm |
2022-08-05 ⋅ 0xIvan ⋅ LokiBot Analysis Loki Password Stealer (PWS) |
2022-08-04 ⋅ YouTube (Security Joes) ⋅ Sockbot In Goland - Linking APT Actors With Ransomware Gangs Sockbot |
2022-07-20 ⋅ Trend Micro ⋅ Analyzing Penetration-Testing Tools That Threat Actors Use to Breach Systems and Steal Data |
2022-07-18 ⋅ YouTube (Security Joes) ⋅ PlugX DLL Side-Loading Technique PlugX |
2022-07-11 ⋅ BBC ⋅ Predatory Sparrow: Who are the hackers who say they started a fire in Iran? Predatory Sparrow |
2022-06-15 ⋅ Security Joes ⋅ Backdoor via XFF: Mysterious Threat Actor Under Radar CHINACHOPPER |
2022-06-09 ⋅ Sentinel LABS ⋅ Aoqin Dragon | Newly-Discovered Chinese-linked APT Has Been Quietly Spying On Organizations For 10 Years heyoka mongall Aoqin Dragon |
2022-05-08 ⋅ IronNet ⋅ Tracking Cobalt Strike Servers Used in Cyberattacks on Ukraine Cobalt Strike |
2022-05-02 ⋅ Sentinel LABS ⋅ Moshen Dragon’s Triad-and-Error Approach | Abusing Security Software to Sideload PlugX and ShadowPad PlugX ShadowPad |
2022-04-23 ⋅ Stranded on Pylos Blog ⋅ Industroyer2 in Perspective INDUSTROYER2 |
2022-04-08 ⋅ Secure Robotics ⋅ Securing Chatbot Technology - Part1: Chatbot Weaponization And ChatRATS |
2022-03-09 ⋅ Security Joes ⋅ Sockbot in GoLand lsassDumper Sockbot |
2022-03-07 ⋅ Elastic ⋅ PHOREAL Malware Targets the Southeast Asian Financial Sector PHOREAL |