Click here to download all references as Bib-File.•
| 2024-10-15
⋅
Microsoft
⋅
Phish, Click, Breach: Hunting for a Sophisticated Cyber Attack UNC4393 |
| 2024-06-20
⋅
Red Canary
⋅
Gourav Khandelwal, Akash Chaudhuri, Matthew Mesa, Sagar Patil, Uri Oren, Krithika Ramakrishnan UNC4393 |
| 2021-10-19
⋅
Proofpoint
⋅
Whatta TA: TA505 Ramps Up Activity, Delivers New FlawedGrace Variant FlawedGrace MirrorBlast |
| 2021-06-24
⋅
Proofpoint
⋅
JSSLoader: Recoded and Reloaded JSSLoader Storm-0324 |
| 2021-03-10
⋅
Proofpoint
⋅
NimzaLoader: TA800’s New Initial Access Malware BazarNimrod Cobalt Strike |
| 2020-05-20
⋅
Proofpoint
⋅
ZLoader Loads Again: New ZLoader Variant Returns Zloader |
| 2019-10-16
⋅
Proofpoint
⋅
TA505 Distributes New SDBbot Remote Access Trojan with Get2 Downloader Get2 SDBbot TA505 |
| 2019-07-02
⋅
Proofpoint
⋅
TA505 begins summer campaigns with a new pet malware downloader, AndroMut, in the UAE, South Korea, Singapore, and the United States AndroMut FlawedAmmyy |
| 2018-08-30
⋅
Twitter (@mesa_matt)
⋅
Tweet on PsiX PsiX |
| 2017-08-25
⋅
Proofpoint
⋅
Operation RAT Cook: Chinese APT actors use fake Game of Thrones leaks as lures 9002 RAT |
| 2017-07-31
⋅
Proofpoint
⋅
FIN7/Carbanak threat actor unleashes Bateleur JScript backdoor Bateleur FIN7 |
| 2017-06-01
⋅
Proofpoint
⋅
Microsoft Word Intruder Integrates CVE-2017-0199, Utilized by Cobalt Group to Target Financial Institutions Cobalt |
| 2016-05-12
⋅
Proofpoint
⋅
Hancitor and Ruckguv Reappear, Updated and With Vawtrak On Deck Hancitor Ruckguv |
| 2016-05-10
⋅
Proofpoint
⋅
Setting Sights On Retail: AbaddonPOS Now Targeting Specific POS Software AbaddonPOS TinyLoader |