Malpedia Library

Click here to download all references as Bib-File.•

2025-11-07 ⋅ Unit 42
LANDFALL: New Commercial-Grade Android Spyware in Exploit Chain Targeting Samsung Devices
LANDFALL

2025-11-05 ⋅ Huntress Labs ⋅ Anna Pham
Gootloader Returns: What Goodies Did They Bring?
GootLoader Supper

2025-11-05 ⋅ ESET Research ⋅ ESET Research
APT Activity: Russia-Aligned APTs Ramp Up Attacks Against Ukraine and Its Strategic Partners (April 2025 – September 2025 Report)

2025-11-05 ⋅ KrebsOnSecurity ⋅ Brian Krebs
Cloudflare Scrubs Aisuru Botnet from Top Domains List
Aisuru

2025-11-05 ⋅ nviso ⋅ Maxime Thiebaut
Decoding VShell: Insights into a Chinese-Language Cyber Espionage Tool
VShell

2025-11-04 ⋅ The Record ⋅ Jonathan Greig
Treasury sanctions 8 for laundering North Korea earnings from cybercrime, IT worker scheme

2025-11-04 ⋅ Twitter (@nextronresearch) ⋅ Nextron Threat Research Team
Tweet about BQT ransomware on Linux
BQTlock

2025-11-02 ⋅ Symantec ⋅ Broadcom, Symantec
Multi-Stage In-Memory Agent Tesla Campaign Targets LATAM
Agent Tesla

2025-10-31 ⋅ Expel ⋅ AARON WALTON
Certified OysterLoader: Tracking Rhysida ransomware gang activity via code-signing certificates
Broomstick

2025-10-30 ⋅ Twitter (@DarkWebInformer) ⋅ Dark Web Informer
Tweet about Aisuru C2 being on top of Cloudflare Radar / Top100 domain
Aisuru

2025-10-29 ⋅ Qianxin ⋅ Acey9, Alex.Turing
Smoking Gun Uncovered: RPX Relay at PolarEdge’s Core Exposed
PolarEdge

2025-10-28 ⋅ KrebsOnSecurity ⋅ Brian Krebs
Aisuru Botnet Shifts from DDoS to Residential Proxies
Aisuru

2025-10-28 ⋅ ThreatFabric ⋅ ThreatFabric
New Android Malware Herodotus Mimics Human Behaviour to Evade Detection

2025-10-28 ⋅ Kaspersky ⋅ Omar Amin, Sojun Ryu
Crypto wasted: BlueNoroff’s ghost mirage of funding and jobs

2025-10-27 ⋅ BartBlaze
Earth Estries alive and kicking

2025-10-27 ⋅ Kaspersky ⋅ Boris Larin
Mem3nt0 mori – The Hacking Team is back!
Dante

2025-10-23 ⋅ Twitter (@salmanvsf) ⋅ Salman Shaikh
Tweet about Discovery of Smile PaaS admin panel

2025-10-23 ⋅ ESET Research ⋅ Alexis Rapin, Peter Kálnai
Gotta fly: Lazarus targets the UAV sector
QuanPinLoader ScoringMathTea

2025-10-22 ⋅ Trend Micro ⋅ Daniel Lunghi, Joseph C Chen, Lenart Bermejo, Leon M Chang, Vickie Su
The Rise of Collaborative Tactics Among China-aligned Cyber Espionage Campaigns
Cobalt Strike DracuLoader ShadowPad

2025-10-22 ⋅ SentinelOne ⋅ Tom Hegel
PhantomCaptcha | Multi-Stage WebSocket RAT Targets Ukraine in Single-Day Spearphishing Operation
Princess