Click here to download all references as Bib-File.
2023-04-19 ⋅ Google ⋅ Ukraine remains Russia’s biggest cyber focus in 2023 Rhadamanthys |
2023-03-21 ⋅ Kaspersky Labs ⋅ Bad magic: new APT found in the area of Russo-Ukrainian conflict PowerMagic CommonMagic |
2022-12-30 ⋅ Interlab ⋅ Cyber Threat Report: RambleOn Android Malware - Detailed analysis report of cyber threat targeting journalist in South Korea through APT phishing campaign with malicious APK RambleOn |
2022-08-16 ⋅ Kaspersky ⋅ Two more malicious Python packages in the PyPI W4SP Stealer |
2022-07-28 ⋅ Kaspersky ⋅ LofyLife: malicious npm packages steal Discord tokens and bank card data |
2022-07-28 ⋅ Kaspersky Labs ⋅ LofyLife: malicious npm packages steal Discord tokens and bank card data Lofy |
2022-07-19 ⋅ Google ⋅ Continued cyber activity in Eastern Europe observed by TAG CyberAzov APT28 Callisto Ghostwriter Sandworm Turla |
2022-07-19 ⋅ Google ⋅ Continued cyber activity in Eastern Europe observed by TAG CyberAzov |
2022-07-08 ⋅ Twitter (@billyleonard) ⋅ Twiiter thread about some recent Turla activity spoofing the Azov Regiment ... but targeting Android users. |
2022-05-12 ⋅ TEAMT5 ⋅ The Next Gen PlugX/ShadowPad? A Dive into the Emerging China-Nexus Modular Trojan, Pangolin8RAT (slides) KEYPLUG Cobalt Strike CROSSWALK FunnySwitch PlugX ShadowPad Winnti SLIME29 TianWu |
2022-05-03 ⋅ Google ⋅ Update on cyber activity in Eastern Europe Curious Gorge |
2022-05-03 ⋅ Google ⋅ Update on cyber activity in Eastern Europe Callisto |
2022-04-25 ⋅ Mandiant ⋅ INDUSTROYER.V2: Old Malware Learns New Tricks INDUSTROYER2 |
2022-03-30 ⋅ Google ⋅ Tracking cyber activity in Eastern Europe |
2022-03-30 ⋅ Google ⋅ Tracking cyber activity in Eastern Europe Callisto Curious Gorge |
2022-03-16 ⋅ Trustwave ⋅ The Attack of the Chameleon Phishing Page |
2022-03-09 ⋅ BreachQuest ⋅ The Conti Leaks | Insight into a Ransomware Unicorn Cobalt Strike MimiKatz TrickBot |
2022-01-14 ⋅ Twitter (@billyleonard) ⋅ Tweet on APT28 credential phishing campaigns targeting Ukraine |
2021-11-10 ⋅ Twitter (@billyleonard) ⋅ Tweet on Rekoobe (used by APT31), being a fork of open source tool called Tiny SHell, used by different actor since at least 2012 Rekoobe |
2021-10-07 ⋅ Twitter (@billyleonard) ⋅ Tweet on IOCs related to APT28 |