Click here to download all references as Bib-File.
2023-01-26 ⋅ NCSC UK ⋅ SEABORGIUM and TA453 continue their respective spear-phishing campaigns against targets of interest |
2022-11-01 ⋅ NCSC UK ⋅ NCSC Annual Review 2022 |
2022-09-14 ⋅ CISA ⋅ Alert (AA22-257A): Iranian Islamic Revolutionary Guard Corps-Affiliated Cyber Actors Exploiting Vulnerabilities for Data Extortion and Disk Encryption for Ransom Operations |
2022-04-20 ⋅ CISA ⋅ AA22-110A Joint CSA: Russian State-Sponsored and Criminal Cyber Threats to Critical Infrastructure VPNFilter BlackEnergy DanaBot DoppelDridex Emotet EternalPetya GoldMax Industroyer Sality SmokeLoader TrickBot Triton Zloader |
2022-02-28 ⋅ NCSC UK ⋅ Malware Analysis Report: SparrowDoor SparrowDoor |
2022-02-24 ⋅ Alert (AA22-055A) Iranian Government-Sponsored Actors Conduct Cyber Operations Against Global Government and Commercial Networks POWERSTATS PowGoop MoriAgent |
2022-02-24 ⋅ Iranian Government-Sponsored Actors Conduct Cyber Operations Against Global Government and Commercial Networks POWERSTATS PowGoop GRAMDOOR MoriAgent |
2022-02-23 ⋅ NCSC UK ⋅ New Sandworm malware Cyclops Blink replaces VPNFilter VPNFilter |
2022-02-23 ⋅ NCSC UK ⋅ Cyclops Blink - Malware Analysis Report |
2022-02-23 ⋅ Advisory: New Sandworm malware Cyclops Blink replaces VPNFilter VPNFilter |
2022-02-09 ⋅ CISA ⋅ Alert (AA22-040A) 2021 Trends Show Increased Globalized Threat of Ransomware |
2021-12-15 ⋅ NCSC UK ⋅ Jolly Jellyfish FishMaster Earth Lusca |
2021-11-17 ⋅ CISA ⋅ Alert (AA21-321A): Iranian Government-Sponsored APT Cyber Actors Exploiting Microsoft Exchange and Fortinet Vulnerabilities in Furtherance of Malicious Activities |
2021-07-28 ⋅ CISA ⋅ Top Routinely Exploited Vulnerabilities |
2021-07-19 ⋅ GOV.UK ⋅ UK and allies hold Chinese state responsible for a pervasive pattern of hacking APT31 APT40 HAFNIUM |
2021-07-19 ⋅ NCSC UK ⋅ UK and allies hold Chinese state responsible for pervasive pattern of hacking APT31 APT40 |
2021-07-01 ⋅ Russian GRU (APT28) Conducting Global Brute Force Campaign to Compromise Enterprise and Cloud Environments reGeorg |
2021-05-07 ⋅ NCSC UK ⋅ Further TTPs associated with SVR cyber actors Sliver |
2021-05-07 ⋅ GCHQ ⋅ Further TTPs associated with SVR cyber actors: Use of multiple publicly available exploits and Sliver framework to target organisations globally |
2020-07-27 ⋅ CISA ⋅ Alert (AA20-209A): Potential Legacy Risk from Malware Targeting QNAP NAS Devices QSnatch |