Malpedia Library

Click here to download all references as Bib-File.•

2025-11-13 ⋅ Israel National Digital Agency ⋅ Adi Pick, Hila David, Idan Beit-Yosef, Shimi Cohen, Yaniv Goldman
SpearSpecter: Unmasking Iran’s IRGC Cyber Operations Targeting High-Profile Individuals
TAMECAT

2025-11-12 ⋅ Amazon ⋅ CJ Moses
Amazon discovers APT exploiting Cisco and Citrix zero-days

2025-11-10 ⋅ Genians ⋅ Genians
State-Sponsored Remote Wipe Tactics Targeting Android Devices
Quasar RAT Remcos

2025-11-07 ⋅ ENKI ⋅ ENKI
Lazarus Group targets Aerospace and Defense with new Comebacker variant
ComeBacker

2025-11-07 ⋅ Unit 42
LANDFALL: New Commercial-Grade Android Spyware in Exploit Chain Targeting Samsung Devices
LANDFALL

2025-11-05 ⋅ Huntress Labs ⋅ Anna Pham
Gootloader Returns: What Goodies Did They Bring?
GootLoader Supper

2025-11-05 ⋅ ESET Research ⋅ ESET Research
APT Activity: Russia-Aligned APTs Ramp Up Attacks Against Ukraine and Its Strategic Partners (April 2025 – September 2025 Report)

2025-11-05 ⋅ KrebsOnSecurity ⋅ Brian Krebs
Cloudflare Scrubs Aisuru Botnet from Top Domains List
Aisuru

2025-11-05 ⋅ nviso ⋅ Maxime Thiebaut
Decoding VShell: Insights into a Chinese-Language Cyber Espionage Tool
VShell

2025-11-04 ⋅ The Record ⋅ Jonathan Greig
Treasury sanctions 8 for laundering North Korea earnings from cybercrime, IT worker scheme

2025-11-04 ⋅ Twitter (@nextronresearch) ⋅ Nextron Threat Research Team
Tweet about BQT ransomware on Linux
BQTlock

2025-11-03 ⋅ Seqrite ⋅ Sathwik Ram Prakki, Subhajeet Singha
Operation Peek-a-Baku: Silent Lynx APT makes sluggish shift to Dushanbe
Laplas (Reverseshell) SilentSweeper

2025-11-02 ⋅ Symantec ⋅ Broadcom, Symantec
Multi-Stage In-Memory Agent Tesla Campaign Targets LATAM
Agent Tesla

2025-10-31 ⋅ Seqrite ⋅ Sathwik Ram Prakki
Operation SkyCloak: Tor Campaign targets Military of Russia & Belarus

2025-10-31 ⋅ Expel ⋅ AARON WALTON
Certified OysterLoader: Tracking Rhysida ransomware gang activity via code-signing certificates
Broomstick

2025-10-30 ⋅ Twitter (@DarkWebInformer) ⋅ Dark Web Informer
Tweet about Aisuru C2 being on top of Cloudflare Radar / Top100 domain
Aisuru

2025-10-29 ⋅ Qianxin ⋅ Acey9, Alex.Turing
Smoking Gun Uncovered: RPX Relay at PolarEdge’s Core Exposed
PolarEdge

2025-10-28 ⋅ KrebsOnSecurity ⋅ Brian Krebs
Aisuru Botnet Shifts from DDoS to Residential Proxies
Aisuru

2025-10-28 ⋅ ThreatFabric ⋅ ThreatFabric
New Android Malware Herodotus Mimics Human Behaviour to Evade Detection

2025-10-28 ⋅ Kaspersky ⋅ Omar Amin, Sojun Ryu
Crypto wasted: BlueNoroff’s ghost mirage of funding and jobs