Click here to download all references as Bib-File.
2023-03-02 ⋅ Youtube (Microsoft Security Response Center (MSRC)) ⋅ BlueHat 2023: Hunting Qakbot with Daniel Taylor & Ben Magee QakBot |
2023-03-02 ⋅ YouTube (Microsoft Security) ⋅ BlueHat 2023 Lightning Talk: Android Malware Obfuscation |
2022-12-21 ⋅ Microsoft ⋅ Microsoft research uncovers new Zerobot capabilities ZeroBot SparkRAT |
2022-11-17 ⋅ Microsoft ⋅ DEV-0569 finds new ways to deliver Royal ransomware, various payloads Royal Ransom |
2022-10-27 ⋅ Microsoft ⋅ Raspberry Robin worm part of larger ecosystem facilitating pre-ransomware activity FAKEUPDATES BumbleBee Fauppod PhotoLoader Raspberry Robin Roshtyak |
2022-10-25 ⋅ Microsoft ⋅ DEV-0832 (Vice Society) opportunistic ransomware campaigns impacting US education sector BlackCat Mount Locker Zeppelin |
2022-10-22 ⋅ Microsoft ⋅ DEV-0952 deploys Daixin ransomware at hospitals |
2022-10-14 ⋅ Microsoft ⋅ New “Prestige” ransomware impacts organizations in Ukraine and Poland Prestige |
2022-10-05 ⋅ Microsoft ⋅ Detecting and preventing LSASS credential dumping attacks |
2022-09-30 ⋅ Microsoft ⋅ Analyzing attacks using the Exchange vulnerabilities CVE-2022-41040 and CVE-2022-41082 |
2022-09-29 ⋅ Microsoft ⋅ ZINC weaponizing open-source software |
2022-09-21 ⋅ Microsoft ⋅ The art and science behind Microsoft threat hunting: Part 2 |
2022-09-08 ⋅ Microsoft ⋅ The art and science behind Microsoft threat hunting: Part 1 |
2022-09-08 ⋅ Microsoft ⋅ Microsoft investigates Iranian attacks against the Albanian government ZeroCleare |
2022-09-07 ⋅ Microsoft ⋅ Profiling DEV-0270: PHOSPHORUS’ ransomware operations |
2022-08-24 ⋅ Microsoft ⋅ Looking for the ‘Sliver’ lining: Hunting for emerging command-and-control frameworks BumbleBee Sliver |
2022-08-04 ⋅ YouTube (Arda Büyükkaya) ⋅ LockBit Ransomware Sideloads Cobalt Strike Through Microsoft Security Tool Cobalt Strike LockBit |
2022-07-28 ⋅ SentinelOne ⋅ Living Off Windows Defender | LockBit Ransomware Sideloads Cobalt Strike Through Microsoft Security Tool Cobalt Strike LockBit |
2022-07-27 ⋅ Microsoft ⋅ Untangling KNOTWEED: European private-sector offensive actor using 0-day exploits Subzero |
2022-05-17 ⋅ Microsoft Security ⋅ In hot pursuit of ‘cryware’: Defending hot wallets from attacks Mars Stealer RedLine Stealer |