Malpedia Library

Click here to download all references as Bib-File.•

2026-02-03 ⋅ Kaspersky Labs ⋅ Anton Kargin, Georgy Kucherin
The Notepad++ supply chain attack — unnoticed execution chains and new IoCs
Chrysalis Cobalt Strike

2026-02-02 ⋅ Netresec ⋅ Erik Hjelmvik
njRAT runs MassLogger
MASS Logger NjRAT

2026-02-01 ⋅ ⋅ Cert-UA ⋅ Cert-UA
"Danger Bulletin": UAC-0001 (APT28) carries out cyberattacks against Ukraine and EU countries using the CVE-2026-21509 exploit (CERT-UA#19542)
GRUNT

2026-01-30 ⋅ ESET Research ⋅ ESET Research
DynoWiper update: Technical analysis and attribution
DynoWiper

2026-01-30 ⋅ LevelBlue ⋅ Evgeny Ananin, Mark Tsipershtein, Nikita Kazymirskyi
19 Shades of LockBit5.0, Inside the Latest Cross-Platform Ransomware: Part 1
LockBit LockBit

2026-01-29 ⋅ Censys ⋅ Andrew Northern
AsyncRAT C2 Activity at Internet Scale
AsyncRAT

2026-01-29 ⋅ Fortninet ⋅ Angelo Deveraturda, Jared Betts, John Simmons, Ken Evans, Mark Robson, Omar Avilez Melo, Xiaopeng Zhang
Interlock Ransomware: New Techniques, Same Old Tricks
Interlock

2026-01-29 ⋅ CrowdStrike ⋅ CrowdStrike Threat Intel Team, Rob Bruner
LABYRINTH CHOLLIMA Evolves into Three Adversaries

2026-01-29 ⋅ HarfangLab ⋅ HarfangLab CTR
RedKitten: AI-accelerated campaign targeting Iranian protests
SloppyMIO

2026-01-28 ⋅ Natto Thoughts ⋅ Eugenio Benincasa
Provincial Tasking, Cross-Provincial Execution: A Case-Based Look at How China Scales Cyber Operations

2026-01-28 ⋅ Proofpoint ⋅ Proofpoint Threat Research Team
Can’t stop, won’t stop: TA584 innovates initial access
XWorm TA584

2026-01-28 ⋅ Google ⋅ Google Threat Intelligence Group
No Place Like Home Network: Disrupting the World's Largest Residential Proxy Network

2026-01-28 ⋅ ESET Research ⋅ Lukáš Štefanko
Love? Actually: Fake dating app used as lure in targeted spyware campaign in Pakistan
GhostChat

2026-01-27 ⋅ Zscaler ⋅ Sudeep Singh, Yin Hong Chang
APT Attacks Target Indian Government Using SHEETCREEP, FIREPOWER, and MAILCREEP | Part 2
MAILCREEP SHEETCREEP

2026-01-27 ⋅ Google ⋅ Google Threat Intelligence Group
Diverse Threat Actors Exploiting Critical WinRAR Vulnerability CVE-2025-8088

2026-01-26 ⋅ Trend Micro ⋅ Joseph C Chen, Ted Lee
PeckBirdy: A Versatile Script Framework for LOLBins Exploitation Used by China-aligned Threat Groups
PeckBirdy GRAYRABBIT

2026-01-26 ⋅ KrebsOnSecurity ⋅ Brian Krebs
Who Operates the Badbox 2.0 Botnet?
BADBOX Kimwolf Aisuru

2026-01-26 ⋅ Zscaler ⋅ Sudeep Singh, Yin Hong Chang
APT Attacks Target Indian Government Using GOGITTER, GITSHELLPAD, and GOSHELL | Part 1
Cobalt Strike

2026-01-23 ⋅ ESET Research ⋅ ESET Research
ESET Research: Sandworm behind cyberattack on Poland’s power grid in late 2025

2026-01-23 ⋅ Zero Day ⋅ Kim Zetter
Cyberattack Targeting Poland’s Energy Grid Used a Wiper