Click here to download all references as Bib-File.•
2024-11-18
⋅
Trend Micro
⋅
Inside Water Barghest’s Rapid Exploit-to-Market Strategy for IoT Devices Ngioweb |
2024-11-18
⋅
Trend Micro
⋅
Inside Water Barghest’s Rapid Exploit-to-Market Strategy for IoT Devices Ngioweb Water Barghest |
2024-11-18
⋅
Trend Micro
⋅
Inside Water Barghests Rapid Exploit-to-Market Strategy for IoT Devices Ngioweb |
2024-11-07
⋅
ESET Research
⋅
APT Activity Report: Abusing Cloud Services and VPN Platforms in the Pursuit of New Prey FrostyNeighbor |
2024-10-28
⋅
ESET Research
⋅
CloudScout: Evasive Panda scouting cloud services CloudScout MgBot Nightdoor |
2024-10-24
⋅
⋅
Cert-UA
⋅
Accounts in service UAC-0218: file theft using HOMESTEEL (CERT-UA#11717) HOMESTEEL UAC-0215 |
2024-09-18
⋅
People’s Republic of China-Linked Actors Compromise Routers and IoT Devices for Botnet Operations Nosedive |
2024-09-10
⋅
Talos Intelligence
⋅
DragonRank, a Chinese-speaking SEO manipulator service provider IISpy PlugX DragonRank |
2024-08-07
⋅
Symantec
⋅
Cloud Cover: How Malicious Actors Are Leveraging Cloud Services GoGra Grager MOONTAG Ondritols TONERJAM |
2024-07-26
⋅
SOC Prime
⋅
UAC-0102 Phishing Attack Detection: Hackers Steal Authentication Data Impersonating the UKR.NET Web Service UAC-0102 |
2024-06-04
⋅
Aquasec
⋅
Muhstik Malware Targets Message Queuing Services Applications Tsunami |
2024-04-29
⋅
Zscaler
⋅
Zloader Learns Old Tricks Zloader |
2024-04-24
⋅
Cisco
⋅
ArcaneDoor - New espionage-focused campaign found targeting perimeter network devices ArcaneDoor Storm-1849 |
2024-04-24
⋅
NCSC UK
⋅
Line Dancer - In-memory shellcode loader targeting Cisco Adaptive Security Appliance (ASA) devices. |
2024-04-24
⋅
NCSC UK
⋅
Line Runner: Persistent webshell targeting Cisco Adaptive Security Appliance (ASA) devices. |
2024-04-02
⋅
Forescout
⋅
“All your base are belong to us” – A probe into Chinese-connected devices in US networks |
2024-03-05
⋅
CIP
⋅
Semi-Annual Chronicles of UAC-0006 Operations SmokeLoader |
2024-03-04
⋅
Cleafy
⋅
On-Device Fraud on the rise: exposing a recent Copybara fraud campaign Copybara |
2024-02-29
⋅
SANS ISC
⋅
Dissecting DarkGate: Modular Malware Delivery and Persistence as a Service DarkGate |
2024-02-27
⋅
BitSight
⋅
Hunting PrivateLoader: The malware behind InstallsKey PPI service PrivateLoader RisePro |