Click here to download all references as Bib-File.
2023-05-24 ⋅ Microsoft ⋅ Volt Typhoon targets US critical infrastructure with living-off-the-land techniques |
2023-05-09 ⋅ eSentire ⋅ eSentire Threat Intelligence Malware Analysis: Vidar Stealer Vidar |
2023-04-27 ⋅ PRODAFT Threat Intelligence ⋅ Nomadic Octopus’ Paperbug Campaign Octopus |
2023-04-19 ⋅ Microsoft ⋅ Exploring STRONTIUM's Abuse of Cloud Services FusionDrive |
2023-04-18 ⋅ Microsoft ⋅ Nation-state threat actor PHOSPHORUS refines tradecraft to attack high-value targets Drokbk |
2023-04-13 ⋅ Microsoft ⋅ Threat actors strive to cause Tax Day headaches CloudEyE Remcos |
2023-04-11 ⋅ Microsoft ⋅ DEV-0196: QuaDream’s “KingsPawn” malware used to target civil society in Europe, North America, the Middle East, and Southeast Asia |
2023-04-07 ⋅ Microsoft ⋅ MERCURY and DEV-1084: Destructive attack on hybrid environment DarkBit |
2023-03-15 ⋅ Microsoft ⋅ A year of Russian hybrid warfare in Ukraine CaddyWiper DesertBlade DoubleZero HermeticWiper INDUSTROYER2 IsaacWiper PartyTicket SwiftSlicer WhisperGate |
2023-03-13 ⋅ Microsoft ⋅ DEV-1101 enables high-volume AiTM campaigns with open-source phishing kit |
2023-03-08 ⋅ Malwarebytes ⋅ Ransomware review: March 2023 Vendetta |
2023-02-27 ⋅ PRODAFT Threat Intelligence ⋅ RIG Exploit Kit: In-Depth Analysis Dridex IcedID ISFB PureCrypter Raccoon RecordBreaker RedLine Stealer Royal Ransom Silence SmokeLoader Zloader |
2023-02-02 ⋅ YouTube (SLEUTHCON) ⋅ Lions, Tigers, and Infostealers - Oh my! RecordBreaker RedLine Stealer Vidar |
2022-12-21 ⋅ Microsoft ⋅ Microsoft research uncovers new Zerobot capabilities ZeroBot SparkRAT |
2022-12-06 ⋅ 360 Threat Intelligence Center ⋅ Analysis of suspected APT-C-56 (Transparent Tribe) attacks against terrorism AhMyth Meterpreter SpyNote AsyncRAT |
2022-12-02 ⋅ Avast Decoded ⋅ Hitching a ride with Mustang Panda PlugX |
2022-11-30 ⋅ Qianxin Threat Intelligence Center ⋅ Analysis of APT29's attack activities against Italy Unidentified 098 (APT29 Slack Downloader) |
2022-11-17 ⋅ Microsoft ⋅ DEV-0569 finds new ways to deliver Royal ransomware, various payloads Royal Ransom |
2022-10-27 ⋅ Microsoft ⋅ Raspberry Robin worm part of larger ecosystem facilitating pre-ransomware activity FAKEUPDATES BumbleBee Fauppod PhotoLoader Raspberry Robin Roshtyak |
2022-10-25 ⋅ Microsoft ⋅ DEV-0832 (Vice Society) opportunistic ransomware campaigns impacting US education sector BlackCat Mount Locker Zeppelin |