Click here to download all references as Bib-File.
2023-03-30 ⋅ Volexity ⋅ 3CX Supply Chain Compromise Leads to ICONIC Incident 3CX Backdoor IconicStealer |
2023-03-07 ⋅ Volexity ⋅ Using Memory Analysis to Detect EDR-Nullifying Malware |
2021-12-14 ⋅ Kaspersky Labs ⋅ Owowa: the add-on that turns your OWA into a credential stealer and remote access panel Owowa |
2021-10-07 ⋅ Kaspersky ⋅ LYCEUM Reborn: Counterintelligence in the Middle East danbot LYCEUM |
2021-09-30 ⋅ Kaspersky ⋅ GhostEmperor: From ProxyLogon to kernel mode GhostEmperor |
2021-07-14 ⋅ Kaspersky ⋅ LuminousMoth APT: Sweeping attacks for the chosen few Cobalt Strike |
2020-10-29 ⋅ Cisco Talos ⋅ DoNot’s Firestarter abuses Google Firebase Cloud Messaging to spread KnSpy |
2020-10-06 ⋅ Talos ⋅ PoetRAT: Malware targeting public and private sector in Azerbaijan evolves Poet RAT |
2020-08-13 ⋅ Talos Intelligence ⋅ Attribution: A Puzzle WellMail elf.wellmess AcidBox WellMess |
2020-06-29 ⋅ Cisco Talos ⋅ PROMETHIUM extends global reach with StrongPity3 APT StrongPity |
2020-05-19 ⋅ Cisco Talos ⋅ The wolf is back... WolfRAT |
2020-04-16 ⋅ Cisco Talos ⋅ PoetRAT: Python RAT uses COVID-19 lures to target Azerbaijan public and private sectors Poet RAT |
2020-03-05 ⋅ Cisco Talos ⋅ Bisonal: 10 years of play Korlia |
2020-01-16 ⋅ Cisco Talos ⋅ JhoneRAT: Cloud based python RAT targeting Middle Eastern countries JhoneRAT |
2019-11-07 ⋅ Virus Bulletin ⋅ DNS on FIre DNSpionage |
2019-11-07 ⋅ Virus Bulletin ⋅ DNS on Fire DNSpionage |
2019-09-24 ⋅ Cisco Talos ⋅ How Tortoiseshell created a fake veteran hiring website to host malware Liderc SysKit |
2019-08-27 ⋅ Cisco Talos ⋅ China Chopper still active 9 years later CHINACHOPPER |
2019-07-09 ⋅ Cisco Talos ⋅ Sea Turtle keeps on swimming, finds new victims, DNS hijacking techniques |
2019-07-09 ⋅ Talos Intelligence ⋅ Sea Turtle Keeps on Swimming |