Click here to download all references as Bib-File.
2020-12-21 ⋅ SophosLabs Uncut ⋅ How SunBurst malware does defense evasion SUNBURST UNC2452 |
2020-12-16 ⋅ SophosLabs Uncut ⋅ Ransomware operators use SystemBC RAT as off-the-shelf Tor backdoor SystemBC |
2020-12-15 ⋅ Github (sophos-cybersecurity) ⋅ solarwinds-threathunt Cobalt Strike SUNBURST |
2020-12-14 ⋅ Sophos ⋅ Sophos-ReversingLabs (SOREL) 20 Million sample malware dataset |
2020-12-14 ⋅ Sophos ⋅ Incident response playbook for responding to SolarWinds Orion compromise SUNBURST |
2020-12-08 ⋅ Sophos ⋅ Egregor ransomware: Maze’s heir apparent Egregor Maze |
2020-11-18 ⋅ Sophos ⋅ SOPHOS 2021 THREAT REPORT Navigating cybersecurity in an uncertain world Agent Tesla Dridex TrickBot Zloader |
2020-11-04 ⋅ Sophos ⋅ A new APT uses DLL side-loads to “KilllSomeOne” PlugX |
2020-10-29 ⋅ Twitter (@SophosLabs) ⋅ Tweet on similarities between BUER in-memory loader & RYUK in-memory loader Buer Ryuk |
2020-10-28 ⋅ SophosLabs Uncut ⋅ Hacks for sale: inside the Buer Loader malware-as-a-service Buer Ryuk Zloader |
2020-10-27 ⋅ Sophos Managed Threat Response (MTR) ⋅ MTR Casebook: An active adversary caught in the act Cobalt Strike |
2020-10-21 ⋅ SophosLabs Uncut ⋅ LockBit uses automated attack tools to identify tasty targets LockBit |
2020-10-14 ⋅ Sophos ⋅ They’re back: inside a new Ryuk ransomware attack Cobalt Strike Ryuk SystemBC |
2020-09-24 ⋅ SophosLabs Uncut ⋅ Email-delivered MoDi RAT attack pastes PowerShell commands DBatLoader |
2020-09-17 ⋅ SophosLabs Uncut ⋅ Maze attackers adopt Ragnar Locker virtual machine technique Maze |
2020-07-29 ⋅ Sophos Labs ⋅ Emotet’s return is the canary in the coal mine Emotet |
2020-07-27 ⋅ Sophos Labs ⋅ ProLock ransomware gives you the first 8 kilobytes of decryption for free PwndLocker |
2020-07-14 ⋅ SophosLabs Uncut ⋅ RATicate upgrades “RATs as a Service” attacks with commercial “crypter” LokiBot BetaBot CloudEyE NetWire RC |
2020-06-24 ⋅ Sophos Labs ⋅ Glupteba malware hides in plain sight Glupteba |
2020-06-24 ⋅ Sophos Naked Security ⋅ Glupteba - the malware that gets secret messages from the Bitcoin blockchain Glupteba |