Click here to download all references as Bib-File.
2022-05-19 ⋅ splunk ⋅ Threat Update: AcidRain Wiper AcidRain |
2022-04-15 ⋅ splunk ⋅ STRT-TA03 CPE - Destructive Software AcidRain CyclopsBlink |
2022-04-07 ⋅ splunk ⋅ You Bet Your Lsass: Hunting LSASS Access Cobalt Strike MimiKatz |
2022-04-01 ⋅ splunk ⋅ Threat Update: CaddyWiper CaddyWiper |
2022-03-28 ⋅ splunk ⋅ Threat Update DoubleZero Destructor DoubleZero |
2022-03-10 ⋅ splunk ⋅ Detecting HermeticWiper HermeticWiper PartyTicket |
2022-03-03 ⋅ Avast Decoded ⋅ Help for Ukraine: Free decryptor for HermeticRansom ransomware PartyTicket |
2022-03-01 ⋅ Proofpoint ⋅ Asylum Ambuscade: State Actor Uses Compromised Private Ukrainian Military Emails to Target European Governments and Refugee Movement SunSeed |
2022-02-08 ⋅ Sansec ⋅ NaturalFreshMall: a mass store hack |
2022-02-07 ⋅ Avast Decoded ⋅ Decrypted: TargetCompany Ransomware TargetCompany |
2022-01-27 ⋅ splunk ⋅ Threat Advisory: STRT-TA02 - Destructive Software WhisperGate |
2022-01-27 ⋅ splunk ⋅ Threat Advisory: STRT-TA02 - Destructive Software WhisperGate |
2022-01-10 ⋅ splunk ⋅ Detecting Malware Script Loaders using Remcos: Threat Research Release December 2021 Remcos |
2021-11-24 ⋅ Sansec ⋅ CronRAT malware hides behind February 31st CronRAT |
2021-11-18 ⋅ Sansec ⋅ Linux malware agent hits eCommerce sites |
2021-11-11 ⋅ splunk ⋅ FIN7 Tools Resurface in the Field – Splinter or Copycat? JSSLoader Remcos |
2021-11-04 ⋅ splunk ⋅ Detecting IcedID... Could It Be A Trickbot Copycat? IcedID |
2021-07-21 ⋅ splunk ⋅ Detecting Trickbot with Splunk TrickBot |
2021-07-20 ⋅ Lazarus organizes social engineering attacks on the cryptocurrency industry |
2021-07-19 ⋅ Proofpoint ⋅ New Threat Actor Uses Spanish Language Lures to Distribute Seldom Observed Bandook Malware Bandook |