Click here to download all references as Bib-File.
2023-03-07 ⋅ Volexity ⋅ Using Memory Analysis to Detect EDR-Nullifying Malware |
2021-12-14 ⋅ Kaspersky Labs ⋅ Owowa: the add-on that turns your OWA into a credential stealer and remote access panel Owowa |
2021-10-07 ⋅ Kaspersky ⋅ LYCEUM Reborn: Counterintelligence in the Middle East danbot LYCEUM |
2021-09-30 ⋅ Kaspersky ⋅ GhostEmperor: From ProxyLogon to kernel mode GhostEmperor |
2021-07-14 ⋅ Kaspersky ⋅ LuminousMoth APT: Sweeping attacks for the chosen few Cobalt Strike |
2020-10-29 ⋅ Cisco Talos ⋅ DoNot’s Firestarter abuses Google Firebase Cloud Messaging to spread Unidentified APK 005 |
2020-10-06 ⋅ Talos ⋅ PoetRAT: Malware targeting public and private sector in Azerbaijan evolves Poet RAT |
2020-08-13 ⋅ Talos Intelligence ⋅ Attribution: A Puzzle WellMail elf.wellmess AcidBox WellMess |
2020-06-29 ⋅ Cisco Talos ⋅ PROMETHIUM extends global reach with StrongPity3 APT StrongPity |
2020-05-19 ⋅ Cisco Talos ⋅ The wolf is back... WolfRAT |
2020-04-16 ⋅ Cisco Talos ⋅ PoetRAT: Python RAT uses COVID-19 lures to target Azerbaijan public and private sectors Poet RAT |
2020-03-05 ⋅ Cisco Talos ⋅ Bisonal: 10 years of play Korlia |
2020-01-16 ⋅ Cisco Talos ⋅ JhoneRAT: Cloud based python RAT targeting Middle Eastern countries JhoneRAT |
2019-09-24 ⋅ Cisco Talos ⋅ How Tortoiseshell created a fake veteran hiring website to host malware Liderc SysKit |
2019-08-27 ⋅ Cisco Talos ⋅ China Chopper still active 9 years later CHINACHOPPER |
2019-07-09 ⋅ Talos Intelligence ⋅ Sea Turtle Keeps on Swimming |
2019-04-23 ⋅ Talos ⋅ DNSpionage brings out the Karkoff DNSpionage Karkoff DNSpionage |
2019-04-17 ⋅ Cisco Talos ⋅ DNS Hijacking Abuses Trust In Core Internet Service Sea Turtle |
2019-03-13 ⋅ Cisco Talos ⋅ GlitchPOS: New PoS malware for sale GlitchPOS |
2019-02-04 ⋅ Cisco ⋅ ExileRAT shares C2 with LuckyCat, targets Tibet LuckyCat Exile RAT |