From aa155af6c5600b7cdc3c37395f1b9d666c985e1b Mon Sep 17 00:00:00 2001 From: Marco Date: Sun, 16 May 2021 14:50:15 +0200 Subject: [PATCH] Update README.md Adding MuddyWater binder Project Report --- README.md | 2 ++ 1 file changed, 2 insertions(+) diff --git a/README.md b/README.md index a2493ad..adf22e1 100644 --- a/README.md +++ b/README.md @@ -30,7 +30,9 @@ Please fire issue to me if any lost APT/Malware events/campaigns. ## 2021 * May 13 - [[CISCO] Transparent Tribe APT expands its Windows malware arsenal](https://blog.talosintelligence.com/2021/05/transparent-tribe-infra-and-targeting.html) | [:closed_book:](../../blob/master/2021/2021.05.13.Transparent_Tribe_APT) * May 07 - [[NCSC] Further TTPs associated with SVR cyber actors](https://www.ncsc.gov.uk/files/Advisory%20Further%20TTPs%20associated%20with%20SVR%20cyber%20actors.pdf) | [:closed_book:](../../blob/master/2021/2021.05.07.SVR_TTPs) +* May 07 - [[Marco Ramilli] MuddyWater: Binder Project (Part 2)](https://marcoramilli.com/2021/05/07/muddywater-binder-project-part-2/) | [:closed_book:](../../blob/master/2021/2021.05.7.MuddyWater_Binder_2) * May 06 - [[Kaspersky] Operation TunnelSnake](https://securelist.com/operation-tunnelsnake-and-moriya-rootkit/101831/) | [:closed_book:](../../blob/master/2021/2021.05.06.Operation_TunnelSnake) +* May 01 - [[Marco Ramilli] MuddyWater: Binder Project (Part 1)](https://marcoramilli.com/2021/05/01/muddywater-binder-project-part-1/) | [:closed_book:](../../blob/master/2021/2021.05.1.MuddyWater_Binder_1) * Apr 28 - [[Fireeye] Ghostwriter Update: Cyber Espionage Group UNC1151 Likely Conducts Ghostwriter Influence Activity](https://www.fireeye.com/blog/threat-research/2021/04/espionage-group-unc1151-likely-conducts-ghostwriter-influence-activity.html) | [:closed_book:](../../blob/master/2021/2021.04.28.Ghostwriter_UNC1151) * Apr 27 - [[Positive] Lazarus Group Recruitment: Threat Hunters vs Head Hunters](https://www.ptsecurity.com/ww-en/analytics/pt-esc-threat-intelligence/lazarus-recruitment/) | [:closed_book:](../../blob/master/2021/2021.04.27.Lazarus_Group_Recruitment) * Apr 23 - [[Bitdefender] NAIKON – Traces from a Military Cyber-Espionage Operation](https://www.bitdefender.com/files/News/CaseStudies/study/396/Bitdefender-PR-Whitepaper-NAIKON-creat5397-en-EN.pdf) | [:closed_book:](../../blob/master/2021/2021.04.23.NAIKON)