Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2020-12-23PrevasioSergei Shevchenko
@techreport{shevchenko:20201223:dns:0f3f013, author = {Sergei Shevchenko}, title = {{DNS Tunneling In The SolarWinds Supply Chain Attack}}, date = {2020-12-23}, institution = {Prevasio}, url = {https://prevasio.com/static/web/viewer.html?file=/static/Anatomy_Of_SolarWinds_Supply_Chain_Attack.pdf}, language = {English}, urldate = {2021-01-01} } DNS Tunneling In The SolarWinds Supply Chain Attack
SUNBURST
2020-12-22PrevasioSergei Shevchenko
@online{shevchenko:20201222:sunburst:9670fa6, author = {Sergei Shevchenko}, title = {{Sunburst Backdoor, Part III: DGA & Security Software (Broken Link)}}, date = {2020-12-22}, organization = {Prevasio}, url = {https://blog.prevasio.com/2020/12/sunburst-backdoor-part-iii-dga-security.html}, language = {English}, urldate = {2021-08-03} } Sunburst Backdoor, Part III: DGA & Security Software (Broken Link)
SUNBURST
2020-12-17PrevasioSergei Shevchenko
@online{shevchenko:20201217:sunburst:9b615cf, author = {Sergei Shevchenko}, title = {{Sunburst Backdoor, Part II: DGA & The List of Victims}}, date = {2020-12-17}, organization = {Prevasio}, url = {https://www.prevasio.io/blog/sunburst-backdoor-part-ii-dga-the-list-of-victims}, language = {English}, urldate = {2022-08-19} } Sunburst Backdoor, Part II: DGA & The List of Victims
SUNBURST
2020-12-15PrevasioSergei Shevchenko
@online{shevchenko:20201215:sunburst:7f6b5db, author = {Sergei Shevchenko}, title = {{Sunburst Backdoor: A Deeper Look Into The SolarWinds' Supply Chain Malware (Broken link)}}, date = {2020-12-15}, organization = {Prevasio}, url = {https://www.prevasio.io/blog/sunburst-backdoor-a-deeper-look-into-the-solarwinds-supply-chain-malware}, language = {English}, urldate = {2022-08-19} } Sunburst Backdoor: A Deeper Look Into The SolarWinds' Supply Chain Malware (Broken link)
SUNBURST
2020-03-05SophosLabsSergei Shevchenko
@techreport{shevchenko:20200305:cloud:e83e58c, author = {Sergei Shevchenko}, title = {{Cloud Snooper Attack Bypasses AWS Security Measures}}, date = {2020-03-05}, institution = {SophosLabs}, url = {https://www.sophos.com/en-us/medialibrary/PDFs/technical-papers/sophoslabs-cloud-snooper-report.pdf}, language = {English}, urldate = {2022-01-28} } Cloud Snooper Attack Bypasses AWS Security Measures
Cloud Snooper Ghost RAT
2020-02-24Sophos LabsSergei Shevchenko
@techreport{shevchenko:20200224:cloud:eea1f10, author = {Sergei Shevchenko}, title = {{Cloud Snooper attack bypasses firewall security measures}}, date = {2020-02-24}, institution = {Sophos Labs}, url = {https://news.sophos.com/wp-content/uploads/2020/02/CloudSnooper_report.pdf}, language = {English}, urldate = {2020-02-27} } Cloud Snooper attack bypasses firewall security measures
Cloud Snooper
2018-05SophosSergei Shevchenko
@online{shevchenko:201805:vpnfilter:d6268ae, author = {Sergei Shevchenko}, title = {{VPNFilter Botnet - a SophosLabs Analysis}}, date = {2018-05}, organization = {Sophos}, url = {https://www.sophos.com/en-us/medialibrary/PDFs/technical-papers/sophos-VPN-Filter-analysis-v2.pdf?la=en}, language = {English}, urldate = {2019-07-09} } VPNFilter Botnet - a SophosLabs Analysis
VPNFilter
2017-10-16BAE SystemsSergei Shevchenko, Hirman Muhammad bin Abu Bakar, James Wong
@online{shevchenko:20171016:taiwan:cb91378, author = {Sergei Shevchenko and Hirman Muhammad bin Abu Bakar and James Wong}, title = {{Taiwan Heist: Lazarus Tools and Ransomware}}, date = {2017-10-16}, organization = {BAE Systems}, url = {https://baesystemsai.blogspot.com/2017/10/taiwan-heist-lazarus-tools.html}, language = {English}, urldate = {2020-01-06} } Taiwan Heist: Lazarus Tools and Ransomware
BLINDTOAD Lazarus Group
2017-10-16Sergei Shevchenko, Hirman Muhammad bin Abu Bakar, James Wong
@online{shevchenko:20171016:taiwan:081b125, author = {Sergei Shevchenko and Hirman Muhammad bin Abu Bakar and James Wong}, title = {{Taiwan Heist: Lazarus Tools and Ransomware}}, date = {2017-10-16}, url = {http://baesystemsai.blogspot.de/2017/10/taiwan-heist-lazarus-tools.html}, language = {English}, urldate = {2020-01-07} } Taiwan Heist: Lazarus Tools and Ransomware
Bitsran Hermes
2017-05-16Sergei Shevchenko, Adrian Nish
@online{shevchenko:20170516:wannacryptor:8bc9235, author = {Sergei Shevchenko and Adrian Nish}, title = {{Wannacryptor Ransomworm}}, date = {2017-05-16}, url = {https://baesystemsai.blogspot.de/2017/05/wanacrypt0r-ransomworm.html}, language = {English}, urldate = {2020-01-07} } Wannacryptor Ransomworm
WannaCryptor
2017-02-20BAE SystemsSergei Shevchenko
@online{shevchenko:20170220:lazarus:c608fd5, author = {Sergei Shevchenko}, title = {{Lazarus’ False Flag Malware}}, date = {2017-02-20}, organization = {BAE Systems}, url = {https://baesystemsai.blogspot.com/2017/02/lazarus-false-flag-malware.html}, language = {English}, urldate = {2019-12-20} } Lazarus’ False Flag Malware
NACHOCHEESE
2016-05-13BAE SystemsSergei Shevchenko, Adrian Nish
@online{shevchenko:20160513:cyber:321743e, author = {Sergei Shevchenko and Adrian Nish}, title = {{CYBER HEIST ATTRIBUTION}}, date = {2016-05-13}, organization = {BAE Systems}, url = {http://baesystemsai.blogspot.de/2016/05/cyber-heist-attribution.html}, language = {English}, urldate = {2019-12-10} } CYBER HEIST ATTRIBUTION
2008-11-30ThreatExpertSergei Shevchenko
@online{shevchenko:20081130:agentbtz:8c68643, author = {Sergei Shevchenko}, title = {{Agent.btz - A Threat That Hit Pentagon}}, date = {2008-11-30}, organization = {ThreatExpert}, url = {http://blog.threatexpert.com/2008/11/agentbtz-threat-that-hit-pentagon.html}, language = {English}, urldate = {2020-01-08} } Agent.btz - A Threat That Hit Pentagon
Agent.BTZ
2008-05-18ThreatExpertSergei Shevchenko
@online{shevchenko:20080518:rustockc:503b03d, author = {Sergei Shevchenko}, title = {{Rustock.C – Unpacking a Nested Doll}}, date = {2008-05-18}, organization = {ThreatExpert}, url = {http://blog.threatexpert.com/2008/05/rustockc-unpacking-nested-doll.html}, language = {English}, urldate = {2020-01-12} } Rustock.C – Unpacking a Nested Doll
Rustock