Click here to download all references as Bib-File.•
2025-06-16
⋅
Proofpoint
⋅
Amatera Stealer: Rebranded ACR Stealer With Improved Evasion, Sophistication ACR Stealer Amatera |
2025-06-09
⋅
Sentinel LABS
⋅
Follow the Smoke | China-nexus Threat Actors Hammer At the Doors of Top Tier Targets GOREshell Nimbo-C2 ShadowPad |
2025-05-28
⋅
Rapid7
⋅
NSIS Abuse and sRDI Shellcode: Anatomy of the Winos 4.0 Campaign Winos |
2025-05-28
⋅
Trustwave
⋅
PhaaS the Secrets: The Hidden Ties Between Tycoon2FA and Dadsec's Operations |
2025-05-27
⋅
Trend Micro
⋅
Earth Lamia Develops Custom Arsenal to Target Multiple Industries BypassBoss Cobalt Strike JuicyPotato PULSEPACK STOWAWAY Vshell |
2025-05-22
⋅
ESET Research
⋅
Danabot: Analyzing a fallen empire DanaBot |
2025-05-20
⋅
Sarcoma Ransomware Unveiled: Anatomy of a Double Extortion Gang Sarcoma |
2025-04-28
⋅
SentinelOne
⋅
Top Tier Target | What It Takes to Defend a Cybersecurity Company from Today’s Adversaries PurpleHaze |
2025-04-22
⋅
Volexity
⋅
Phishing for Codes: Russian Threat Actors Target Microsoft 365 OAuth Workflows UTA0352 UTA0355 |
2025-04-14
⋅
Palo Alto Networks Unit 42
⋅
Slow Pisces Targets Developers With Coding Challenges and Introduces New Customized Python Malware RN Stealer |
2025-03-31
⋅
Wiz.io
⋅
CPU_HU: Fileless cryptominer targeting exposed PostgreSQL with over 1.5K victims JINX-0126 |
2025-03-13
⋅
EclecticIQ
⋅
Inside BRUTED: Black Basta (RaaS) Members Used Automated Brute Forcing Framework to Target Edge Network Devices Black Basta |
2025-03-11
⋅
Hunt.io
⋅
JSPSpy and ‘filebroser’: A Custom File Management Tool in Webshell Infrastructure |
2025-02-27
⋅
Palo Alto Networks Unit 42
⋅
Squidoor: Suspected Chinese Threat Actor’s Backdoor Targets Global Organizations FINALDRAFT FINALDRAFT REF7707 |
2025-02-25
⋅
Sentinel LABS
⋅
Ghostwriter | New Campaign Targets Ukrainian Government and Belarusian Opposition |
2025-02-15
⋅
⋅
Youtube (greenplan)
⋅
[BINARY REFINERY] (Emmenhtal) - Deobfuscation of a custom obfuscation algorithm Emmenhtal |
2025-02-13
⋅
Volexity
⋅
Multiple Russian Threat Actors Targeting Microsoft Device Code Authentication |
2025-02-03
⋅
SentinelOne
⋅
macOS FlexibleFerret | Further Variants of DPRK Malware Family Unearthed FlexibleFerret FriendlyFerret FrostyFerret |
2025-01-29
⋅
SecurityScorecard
⋅
Operation Phantom Circuit: North Korea’s Global Data Exfiltration Campaign BeaverTail InvisibleFerret |
2025-01-27
⋅
SecurityScorecard
⋅
Operation Phantom Circuit: North Korea’s Global Data Exfiltration Campaign |