Malpedia Library

Click here to download all references as Bib-File.•

2026-01-29 ⋅ Fortninet ⋅ Angelo Deveraturda, Jared Betts, John Simmons, Ken Evans, Mark Robson, Omar Avilez Melo, Xiaopeng Zhang
Interlock Ransomware: New Techniques, Same Old Tricks
Interlock

2026-01-29 ⋅ CrowdStrike ⋅ CrowdStrike Threat Intel Team, Rob Bruner
LABYRINTH CHOLLIMA Evolves into Three Adversaries

2026-01-29 ⋅ HarfangLab ⋅ HarfangLab CTR
RedKitten: AI-accelerated campaign targeting Iranian protests
SloppyMIO

2026-01-28 ⋅ Natto Thoughts ⋅ Eugenio Benincasa
Provincial Tasking, Cross-Provincial Execution: A Case-Based Look at How China Scales Cyber Operations

2026-01-28 ⋅ Proofpoint ⋅ Proofpoint Threat Research Team
Can’t stop, won’t stop: TA584 innovates initial access
XWorm TA584

2026-01-28 ⋅ Google ⋅ Google Threat Intelligence Group
No Place Like Home Network: Disrupting the World's Largest Residential Proxy Network

2026-01-28 ⋅ ESET Research ⋅ Lukáš Štefanko
Love? Actually: Fake dating app used as lure in targeted spyware campaign in Pakistan
GhostChat

2026-01-27 ⋅ Zscaler ⋅ Sudeep Singh, Yin Hong Chang
APT Attacks Target Indian Government Using SHEETCREEP, FIREPOWER, and MAILCREEP | Part 2
MAILCREEP SHEETCREEP

2026-01-27 ⋅ Google ⋅ Google Threat Intelligence Group
Diverse Threat Actors Exploiting Critical WinRAR Vulnerability CVE-2025-8088

2026-01-26 ⋅ Trend Micro ⋅ Joseph C Chen, Ted Lee
PeckBirdy: A Versatile Script Framework for LOLBins Exploitation Used by China-aligned Threat Groups
PeckBirdy GRAYRABBIT

2026-01-26 ⋅ KrebsOnSecurity ⋅ Brian Krebs
Who Operates the Badbox 2.0 Botnet?
BADBOX Kimwolf Aisuru

2026-01-26 ⋅ Zscaler ⋅ Sudeep Singh, Yin Hong Chang
APT Attacks Target Indian Government Using GOGITTER, GITSHELLPAD, and GOSHELL | Part 1
Cobalt Strike

2026-01-23 ⋅ ESET Research ⋅ ESET Research
ESET Research: Sandworm behind cyberattack on Poland’s power grid in late 2025

2026-01-23 ⋅ Zero Day ⋅ Kim Zetter
Cyberattack Targeting Poland’s Energy Grid Used a Wiper

2026-01-23 ⋅ BlackPoint ⋅ Jack Patrick, Sam Decker
Novel Fake CAPTCHA Chain Delivering Amatera Stealer
ACR Stealer Amatera

2026-01-20 ⋅ Checkpoint ⋅ Checkpoint Research
VoidLink: Evidence That the Era of Advanced AI-Generated Malware Has Begun
VoidLink

2026-01-20 ⋅ Abstract Security ⋅ Abstract Security Threat Research Organization
Contagious Interview: Tracking the VS Code Tasks Infection Vector
BeaverTail InvisibleFerret

2026-01-20 ⋅ KrebsOnSecurity ⋅ Brian Krebs
Kimwolf Botnet Lurking in Corporate, Govt. Networks
Kimwolf Aisuru

2026-01-20 ⋅ FalconFeeds ⋅ FalconFeeds
Inside Iran’s APT Network: Profiling the Most Active Iranian State‑Linked Threat Actors

2026-01-20 ⋅ Jamf Blog ⋅ Thijs Xhaflaire
Threat Actors Expand Abuse of Microsoft Visual Studio Code