Click here to download all references as Bib-File.•
| 2026-07-15
⋅
Expel
⋅
Introducing CylindricalCanine: The GoldenEyeDog subgroup responsible for the April DigiCert incident Ghost RAT |
| 2026-07-15
⋅
Symantec
⋅
Daxin Returns: Stealthy Malware Resurfaces in Taiwan Alongside a New Backdoor Daxin |
| 2026-07-14
⋅
Ctrl-Alt-Intel
⋅
Burnt by Burgers: Highlighting Void Blizzard’s Russian State Links |
| 2026-07-14
⋅
PICUS Security
⋅
FSB Center 16: How Russian hackers exploit routers via SNMP and Cisco Smart Install |
| 2026-07-13
⋅
abuse.ch
⋅
MalwareBazaar | SHA256 13543ef85a0988a09ef430a1f114f920a670a82f9e360ff9e6872252062d4768 (RevStealer) RevStealer |
| 2026-07-13
⋅
kienmanowar Blog
⋅
[QuickNote] SolidPDFCreator – Mustang Panda Stage-1 Backdoor (Target India) |
| 2026-07-07
⋅
Proofpoint
⋅
One Email Closer to the Edge: UNK_MassTraction & the Physics of Exploitation IceCube |
| 2026-07-07
⋅
Cisco Talos
⋅
UAT-7810 continues building ORB networks using new malware DOGLEASH LONGLEASH JARLEASH |
| 2026-07-02
⋅
FBI
⋅
Cyber Criminal Group TeamPCP Shai-Hulud TeamPCP |
| 2026-07-01
⋅
Fortinet
⋅
Analysis of Ongoing Ousaban Attacks Targeting the Iberian Peninsula Ousaban |
| 2026-07-01
⋅
Socket
⋅
PolinRider: North Korea-Linked Supply Chain Campaign Expands Across Open Source Ecosystems JADESNOW |
| 2026-06-30
⋅
JFrog Security
⋅
Lazarus-Linked npm Malware Masquerades as Rollup Polyfills OtterCookie |
| 2026-06-29
⋅
The DFIR Report
⋅
From Bing Search to Ransomware: Bumblebee and AdaptixC2 Deliver Akira Akira AdaptixC2 Akira BumbleBee |
| 2026-06-29
⋅
BlackPoint
⋅
A Djinn in the Machine: TaskWeaver’s Node.js Intrusion Chain |
| 2026-06-28
⋅
Acronis
⋅
Mustang Panda targets India's government and energy sectors with ZOHOMURK and MINIRECON MINIRECON ZOHOMURK |
| 2026-06-25
⋅
Microsoft Security
⋅
Photo ZIP campaign targeting hospitality industry delivers Node.js implant for persistent access TonRAT |
| 2026-06-24
⋅
BitSight
⋅
Amadey and StealC: Malware-as-a-Service Unavailable Amadey Stealc |
| 2026-06-24
⋅
JFrog Security
⋅
Hijacked npm Packages Use Novel VSCode Autorun and Blockchain Dead Drops to Deploy a Credential/Crypto Stealer JADESNOW |
| 2026-06-24
⋅
Europol
⋅
Global cyber strike disrupts SocGholish, Amadey, and StealC malware networks FAKEUPDATES Amadey Stealc |
| 2026-06-23
⋅
Sentinel LABS
⋅
macOS.Gaslight | Rust Backdoor Turns Prompt Injection on the Analyst, Not the Sandbox Gaslight |