Click here to download all references as Bib-File.
2023-01-19 ⋅ Mandiant ⋅ Suspected Chinese Threat Actors Exploiting FortiOS Vulnerability (CVE-2022-42475) BOLDMOVE BOLDMOVE |
2022-01-20 ⋅ Kaspersky ⋅ MoonBounce: the dark side of UEFI firmware MoonBounce |
2022-01-20 ⋅ Kaspersky Labs ⋅ Technical details of MoonBounce’s implementation MoonBounce |
2021-10-07 ⋅ Kaspersky ⋅ LYCEUM Reborn: Counterintelligence in the Middle East danbot LYCEUM |
2021-09-30 ⋅ Kaspersky ⋅ GhostEmperor: From ProxyLogon to kernel mode GhostEmperor |
2021-07-14 ⋅ Kaspersky ⋅ LuminousMoth APT: Sweeping attacks for the chosen few Cobalt Strike |
2021-05-06 ⋅ Kaspersky ⋅ Operation TunnelSnake Moriya |
2021-04-05 ⋅ Kaspersky ⋅ The leap of a Cycldek-related threat actor |
2020-10-05 ⋅ Kaspersky ⋅ MosaicRegressor: Lurking in the Shadows of UEFI |
2020-10-05 ⋅ Kaspersky Labs ⋅ MosaicRegressor: Lurking in the Shadows of UEFI MosaicRegressor |
2020-10-05 ⋅ Kaspersky Labs ⋅ MosaicRegressor: Lurking in the Shadows of UEFI (Technical Details) |
2020-09-24 ⋅ CARO ⋅ Cycldek aka Goblin Panda: Chronicles of the Goblin NewCore RAT USBCulprit |
2020-06-03 ⋅ Kaspersky Labs ⋅ Cycldek: Bridging the (air) gap 8.t Dropper NewCore RAT PlugX USBCulprit GOBLIN PANDA Hellsing |
2020-05-07 ⋅ AVAR ⋅ The North Korean AV Anthology: a unique look on DPRK’s Anti-Virus market Volgmer |
2018-06-12 ⋅ Check Point Research ⋅ Deep Dive into UPAS Kit vs. Kronos UPAS |
2018-02-04 ⋅ Check Point ⋅ DorkBot: An Investigation NgrBot |