Click here to download all references as Bib-File.
2023-10-24 ⋅ Sentinel LABS ⋅ The Israel-Hamas War | Cyber Domain State-Sponsored Activity of Interest |
2023-09-21 ⋅ Sentinel LABS ⋅ Cyber Soft Power | China’s Continental Takeover Earth Estries |
2023-08-17 ⋅ SentinelOne ⋅ Chinese Entanglement | DLL Hijacking in the Asian Gambling Sector Cobalt Strike HUI Loader |
2023-08-07 ⋅ SentinelOne ⋅ Comrades in Arms? | North Korea Compromises Sanctioned Russian Missile Engineering Company OpenCarrot |
2023-08-01 ⋅ SentinelOne ⋅ Illicit Brand Impersonation | A Threat Hunting Approach |
2023-07-20 ⋅ SentinelOne ⋅ JumpCloud Intrusion | Attacker Infrastructure Links Compromise to North Korean APT Activity |
2023-05-04 ⋅ SentinelOne ⋅ Kimsuky Evolves Reconnaissance Capabilities in New Global Campaign BabyShark |
2023-03-16 ⋅ SentinelOne ⋅ Winter Vivern | Uncovering a Wave of Global Espionage APERETIF Winter Vivern |
2023-01-12 ⋅ Sentinel LABS ⋅ NoName057(16) – The Pro-Russian Hacktivist Group Targeting NATO Bobik Dosia NoName057(16) |
2022-09-22 ⋅ Sentinel LABS ⋅ Void Balaur | The Sprawling Infrastructure of a Careless Mercenary Void Balaur |
2022-07-18 ⋅ Fortinet ⋅ From the Front Lines | 8220 Gang Massively Expands Cloud Botnet to 30,000 Infected Hosts |
2022-07-07 ⋅ Sentinel LABS ⋅ Targets of Interest - Russian Organizations Increasingly Under Attack By Chinese APTs 8.t Dropper Korlia |
2022-03-24 ⋅ Sentinel LABS ⋅ Chinese Threat Actor Scarab Targeting Ukraine HeaderTip Scieron |
2022-03-24 ⋅ Sentinel LABS ⋅ Chinese Threat Actor Scarab Targeting Ukraine Scieron Scarab |
2022-02-09 ⋅ Sentinel LABS ⋅ ModifiedElephant APT and a Decade of Fabricating Evidence DarkComet Incubator NetWire RC ModifiedElephant |
2022-02-09 ⋅ SentinelOne ⋅ Modified Elephant APT and a Decade of Fabricating Evidence DarkComet Incubator NetWire RC |
2021-09-23 ⋅ lacework ⋅ HCRootkit / Sutersu Linux Rootkit Analysis |
2021-06-21 ⋅ lacework ⋅ Threat Hunting SSH Keys – Bash Script Feature Pivoting |
2021-05-20 ⋅ lacework ⋅ 8220 Gangs Recent use of Custom Miner and Botnet |
2021-04-13 ⋅ lacework ⋅ Carbine Loader Cryptojacking Campaign |