Click here to download all references as Bib-File.
2023-09-19 ⋅ Cisco Talos ⋅ New ShroudedSnooper actor targets telecommunications firms in the Middle East with novel Implants HTTPSnoop PipeSnoop ShroudedSnooper |
2023-05-03 ⋅ unpac.me ⋅ UnpacMe Weekly: New Version of IcedId Loader IcedID PhotoLoader |
2022-12-27 ⋅ Palo Alto Networks Unit 42 ⋅ Navigating the Vast Ocean of Sandbox Evasions TrickBot Zebrocy |
2022-12-16 ⋅ Elastic ⋅ SiestaGraph: New implant uncovered in ASEAN member foreign ministry DoorMe SiestaGraph |
2022-08-18 ⋅ Sophos ⋅ Cookie stealing: the new perimeter bypass Cobalt Strike Meterpreter MimiKatz Phoenix Keylogger Quasar RAT |
2022-06-02 ⋅ Kroll ⋅ ModPipe POS Malware: New Hooking Targets Extract Card Data ModPipe |
2022-03-02 ⋅ Youtube (OALabs) ⋅ Botleggers Exposed - Analysis of The Conti Leaks Malware Conti |
2022-02-28 ⋅ Sophos ⋅ Conti and Karma actors attack healthcare provider at same time through ProxyShell exploits Conti Karma |
2022-02-02 ⋅ CNN ⋅ US officials prepare for potential Russian cyberattacks as Ukraine standoff continues |
2022-02-01 ⋅ Sophos ⋅ SolarMarker campaign used novel registry changes to establish persistence solarmarker |
2021-12-20 ⋅ Sophos ⋅ Logjam: Log4j exploit attempts continue in globally distributed scans, attacks |
2021-12-17 ⋅ Sophos ⋅ Inside the code: How the Log4Shell exploit works |
2021-12-12 ⋅ Sophos ⋅ Log4Shell Hell: anatomy of an exploit outbreak |
2021-11-18 ⋅ SophosLabs Uncut ⋅ New ransomware actor uses password protected archives to bypass encryption protection |
2021-11-18 ⋅ Sophos ⋅ New ransomware actor uses password-protected archives to bypass encryption protection |
2021-10-24 ⋅ Sophos ⋅ Node poisoning: hijacked package delivers coin miner and credential-stealing backdoor DanaBot Monero Miner |
2021-10-04 ⋅ Sophos ⋅ Atom Silo ransomware actors use Confluence exploit, DLL side-load for stealthy attack ATOMSILO Cobalt Strike |
2021-09-23 ⋅ Sophos ⋅ Phishing and malware actors abuse Google Forms for credentials, data exfiltration |
2021-09-03 ⋅ Sophos ⋅ Conti affiliates use ProxyShell Exchange exploit in ransomware attacks Cobalt Strike Conti |
2021-09-02 ⋅ Anomali ⋅ Cybercrime Group FIN7 Using Windows 11 Alpha-Themed Docs to Drop Javascript Backdoor |