Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2024-12-04Rapid7Tyler McGraw
Black Basta Ransomware Campaign Drops Zbot, DarkGate, and Custom Malware
Black Basta Cobalt Strike DarkGate SystemBC Zloader
2024-11-27Rapid7Natalie Zargarov
New “CleverSoar” Installer Targets Chinese and Vietnamese Users
ValleyRAT
2024-11-21Rapid7Anna Širokova
A Bag of RATs: VenomRAT vs. AsyncRAT
AsyncRAT Venom RAT
2024-08-12Rapid7Tyler McGraw
Ongoing Social Engineering Campaign Refreshes Payloads
Black Basta Cobalt Strike GhostSocks Lumma Stealer SystemBC
2024-07-24Rapid7Rapid7
Malware Campaign Lures Users With Fake W2 Form
Latrodectus
2024-06-17Rapid7Rapid7
Malvertising Campaign Leads to Execution of Oyster Backdoor
Broomstick ChrGetPdsi Stealer
2024-05-10Rapid7 LabsEvan McCann, Thomas Elkins, Tyler McGraw
Ongoing Social Engineering Campaign Linked to Black Basta Ransomware Operators
Black Basta Black Basta Cobalt Strike NetSupportManager RAT
2024-01-17Rapid7Natalie Zargarov
Whispers of Atlantida: Safeguarding Your Digital Treasure
Atlantida
2023-08-31Rapid7 LabsEvan McCann, Natalie Zargarov, Thomas Elkins, Tyler McGraw
Fake Update Utilizes New IDAT Loader To Execute StealC and Lumma Infostealers
FAKEUPDATES Amadey HijackLoader Lumma Stealer SectopRAT
2023-07-13Rapid7 LabsNatalie Zargarov
Old Blackmoon Trojan, NEW Monetization Approach
KrBanker
2023-07-07Rapid7 LabsCaitlin Condon
Exploitation of Mitel MiVoice Connect SA CVE-2022-29499
2023-04-18Rapid7 LabsMatt Green
Automating Qakbot Detection at Scale With Velociraptor
QakBot
2023-03-30Rapid7 LabsRapid7
Backdoored 3CXDesktopApp Installer Used in Active Threat Campaign
3CX Backdoor
2023-01-11Rapid7 LabsEoin Miller
Increasing The Sting of HIVE Ransomware
Hive
2021-03-11Rapid7 LabsCaitlin Condon, Spencer McIntyre, William Vu
2020 Vulnerability Intelligence Report
2021-03-02Rapid7 LabsAndrew Christian
Rapid7’s InsightIDR Enables Detection And Response to Microsoft Exchange Zero-Day
CHINACHOPPER HAFNIUM
2020-11-04FireEyeJacob Thompson, Jeffrey Martin, Rapid7
In Wild Critical Buffer Overflow Vulnerability in Solaris Can Allow Remote Takeover — CVE-2020-14871
2020-05-28Rapid7 LabsMatthew Berninger
The Masked SYNger: Investigating a Traffic Phenomenon
2019-02-06Recorded FutureInsikt Group, Rapid7
APT10 Targeted NorwegianMSP and US Companies in Sustained Campaign
RedLeaves
2019-02-06Recorded FutureInsikt Group, Rapid7
APT10 Targeted Norwegian MSP and US Companies in Sustained Campaign
Trochilus RAT APT31 HURRICANE PANDA
2013-06-07Rapid7 LabsClaudio Guarnieri, Mark Schloesser
KeyBoy, Targeted Attacks against Vietnam and India
KeyBoy APT23