Click here to download all references as Bib-File.•
| 2024-09-19
⋅
Mandiant
⋅
UNC1860 and the Temple of Oats: Iran’s Hidden Hand in Middle Eastern Networks OATBOAT |
| 2024-09-19
⋅
Mandiant
⋅
UNC1860 and the Temple of Oats: Iran’s Hidden Hand in Middle Eastern Networks CRYPTOSLAY PipeSnoop TEMPLEDOOR UNC1860 |
| 2023-01-19
⋅
Mandiant
⋅
Suspected Chinese Threat Actors Exploiting FortiOS Vulnerability (CVE-2022-42475) BOLDMOVE BOLDMOVE |
| 2022-01-20
⋅
Kaspersky Labs
⋅
Technical details of MoonBounce’s implementation MoonBounce |
| 2022-01-20
⋅
Kaspersky
⋅
MoonBounce: the dark side of UEFI firmware MoonBounce |
| 2021-10-07
⋅
Kaspersky
⋅
LYCEUM Reborn: Counterintelligence in the Middle East danbot LYCEUM |
| 2021-09-30
⋅
Kaspersky
⋅
GhostEmperor: From ProxyLogon to kernel mode GhostEmperor GhostEmperor |
| 2021-07-14
⋅
Kaspersky
⋅
LuminousMoth APT: Sweeping attacks for the chosen few Cobalt Strike |
| 2021-05-06
⋅
Kaspersky
⋅
Operation TunnelSnake Moriya TunnelSnake |
| 2021-04-05
⋅
Kaspersky
⋅
The leap of a Cycldek-related threat actor |
| 2020-10-05
⋅
Kaspersky
⋅
MosaicRegressor: Lurking in the Shadows of UEFI |
| 2020-10-05
⋅
Kaspersky Labs
⋅
MosaicRegressor: Lurking in the Shadows of UEFI (Technical Details) |
| 2020-10-05
⋅
Kaspersky Labs
⋅
MosaicRegressor: Lurking in the Shadows of UEFI MosaicRegressor |
| 2020-09-24
⋅
CARO
⋅
Cycldek aka Goblin Panda: Chronicles of the Goblin NewCore RAT USBCulprit |
| 2020-06-03
⋅
Kaspersky Labs
⋅
Cycldek: Bridging the (air) gap 8.t Dropper NewCore RAT PlugX USBCulprit GOBLIN PANDA Hellsing |
| 2020-05-07
⋅
AVAR
⋅
The North Korean AV Anthology: a unique look on DPRK’s Anti-Virus market Volgmer |
| 2018-06-12
⋅
Check Point Research
⋅
Deep Dive into UPAS Kit vs. Kronos UPAS |
| 2018-02-04
⋅
Check Point
⋅
DorkBot: An Investigation NgrBot |