Malpedia Library

Click here to download all references as Bib-File.•

2026-01-07 ⋅ Huntress Labs ⋅ Anna Pham, Matt Anderson
The Great VM Escape: ESXi Exploitation in the Wild

2026-01-06 ⋅ Trellix ⋅ Aswath A
The Ghost in the Machine: Unmasking CrazyHunter's Stealth Tactics
CrazyHunter

2026-01-06 ⋅ TechCrunch ⋅ Zack Whittaker
Founder of spyware maker pcTattletale pleads guilty to hacking and advertising surveillance software
pcTattletale

2026-01-05 ⋅ HudsonRock ⋅ InfoStealers
Dozens of Global Companies Hacked via Cloud Credentials from Infostealer Infections & More at Risk

2026-01-03 ⋅ Linkedin (Tammy H.) ⋅ Tammy H.
Emerging Threat: The DeadFrog AV/EDR Killer

2025-12-30 ⋅ Koi Security ⋅ Gal Hachamov, Tuval Admoni
DarkSpectre: Unmasking the Threat Actor Behind 8.8 Million Infected Browsers

2025-12-30 ⋅ US Department of Justice ⋅ Office of Public Affairs
Two Americans Plead Guilty to Targeting Multiple U.S. Victims Using ALPHV BlackCat Ransomware
BlackCat BlackCat

2025-12-29 ⋅ LinkedIn (Idan Tarab) ⋅ Idan Tarab
Active Spear-Phishing Campaign Targeting Israeli Security-Related Individuals — Infrastructure Linked to APT42 (Hashtag#CharmingKitten)

2025-12-22 ⋅ Medium Ireneusz Tarnowski ⋅ Ireneusz Tarnowski
Operational Analysis of Communication Channels in Mobile RCS
SpyFRPTunnel

2025-12-21 ⋅ Genians ⋅ Genians
Operation Artemis: Analysis of HWP-Based DLL Side Loading Attacks
RokRAT

2025-12-19 ⋅ Intezer ⋅ Nicole Fishbein
Tracing a Paper Werewolf campaign through AI-generated decoys and Excel XLLs
EchoGather

2025-12-18 ⋅ Huntress Labs ⋅ Austin Worline, Lindsey O'Donnell-Welch
A Series of Unfortunate (RMM) Events

2025-12-18 ⋅ Acronis ⋅ Acronis Security
Acronis TRU Alliance {Hunt.io}: Hunting DPRK threats - New Global Lazarus & Kimsuky campaigns
BADCALL POOLRAT Quasar RAT

2025-12-18 ⋅ Gen Digital Inc ⋅ Vojtěch Krejsa
Gen Blogs | Defeating AuraStealer: Practical Deobfuscation Workflows for Modern Infostealers
Aura Stealer

2025-12-18 ⋅ safebreach ⋅ Tomer Bar
Prince of Persia: A decade of Iranian Nation State APT Campaign Activity
Infy Tonnerre

2025-12-18 ⋅ BlackPoint ⋅ Nevan Beal, Sam Decker
New MintsLoader Variant Using Hashtable Obfuscation
MintsLoader

2025-12-16 ⋅ Zscaler ⋅ Gaetano Pellegrino
BlindEagle Targets Colombian Government Agency with Caminho and DCRAT
DCRat PhantomVAI

2025-12-16 ⋅ sysdig ⋅ Sysdig Threat Research Team
EtherRAT dissected: How a React2Shell implant delivers 5 payloads through blockchain C2
EtherRAT

2025-12-15 ⋅ Amazon ⋅ CJ Moses
Amazon Threat Intelligence identifies Russian cyber threat group targeting Western critical infrastructure

2025-12-15 ⋅ Bleeping Computer ⋅ Sergiu Gatlan
French Interior Ministry confirms cyberattack on email servers