Click here to download all references as Bib-File.•
2024-07-25
⋅
SOC Prime
⋅
UAC-0057 Attack Detection: A Surge in Adversary Activity Distributing PICASSOLOADER and Cobalt Strike Beacon Cobalt Strike PicassoLoader Ghostwriter |
2024-07-25
⋅
CrowdStrike
⋅
Hacktivist Entity USDoD Claims to Have Leaked CrowdStrike’s Threat Actor List SAMBASPIDER |
2024-07-02
⋅
Sekoia
⋅
Exposing FakeBat loader: distribution methods and adversary infrastructure BlackCat Royal Ransom EugenLoader Carbanak Cobalt Strike DICELOADER Gozi IcedID Lumma Stealer NetSupportManager RAT Pikabot RedLine Stealer SectopRAT Sliver SmokeLoader Vidar |
2024-03-06
⋅
BushidoToken
⋅
Tracking Adversaries: UAC-0050, Cracking The DaVinci Code |
2024-02-01
⋅
Securonix
⋅
Analysis and Detection of STEADY#URSA Attack Campaign Targeting Ukraine Military Dropping New Covert SUBTLE-PAWS PowerShell Backdoor SUBTLE-PAWS |
2024-01-09
⋅
Recorded Future
⋅
2023 Adversary Infrastructure Report AsyncRAT Cobalt Strike Emotet PlugX ShadowPad |
2023-12-12
⋅
Fourcore
⋅
Rhysida Ransomware: History, TTPs And Adversary Emulation Plans Rhysida Rhysida Vanilla Tempest |
2023-12-11
⋅
Sentinel LABS
⋅
Sandman APT | China-Based Adversaries Embrace Lua KEYPLUG LuaDream |
2023-12-07
⋅
Palo Alto Networks Unit 42
⋅
Fighting Ursa Aka APT28: Illuminating a Covert Campaign |
2023-11-09
⋅
CrowdStrike
⋅
IMPERIAL KITTEN Deploys Novel Malware Families in Middle East-Focused Operations IMAPLoader |
2023-10-31
⋅
Palo Alto Networks Unit 42
⋅
Over the Kazuar’s Nest: Cracking Down on a Freshly Hatched Backdoor Used by Pensive Ursa (Aka Turla) Kazuar |
2023-08-26
⋅
BushidoToken Blog
⋅
Tracking Adversaries: Scattered Spider, the BlackCat affiliate BlackLotus POORTRY |
2023-08-10
⋅
CrowdStrike
⋅
Discovering and Blocking a Zero-Day Exploit with CrowdStrike Falcon Complete: The Case of CVE-2023-36874 |
2023-07-12
⋅
Palo Alto Networks Unit 42
⋅
Diplomats Beware: Cloaked Ursa Phishing With a Twist GraphDrop |
2023-07-12
⋅
Palo Alto Networks Unit 42
⋅
Diplomats Beware: Cloaked Ursa Phishing With a Twist |
2023-06-23
⋅
Fourcore
⋅
Clop Ransomware: History, Timeline, And Adversary Simulation Clop |
2023-05-15
⋅
CrowdStrike
⋅
Hypervisor Jackpotting, Part 3: Lack of Antivirus Support Opens the Door to Adversary Attacks BlackCat SystemBC |
2023-05-03
⋅
META
⋅
Meta’s Adversarial Threat Report, First Quarter 2023 |
2023-01-05
⋅
AttackIQ
⋅
Emulating the Highly Sophisticated North Korean Adversary Lazarus Group MagicRAT Tiger RAT |
2022-12-20
⋅
Palo Alto Networks Unit 42
⋅
Russia’s Trident Ursa (aka Gamaredon APT) Cyber Conflict Operations Unwavering Since Invasion of Ukraine Unidentified VBS 005 (Telegram Loader) |