Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2026-01-16sysdigSysdig Threat Research Team
VoidLink threat analysis: Sysdig discovers C2-compiled kernel rootkits
VoidLink
2026-01-15Cisco TalosAsheer Malhotra, Brandon White, Vitor Ventura
UAT-8837 targets critical infrastructure sectors in North America
Earthworm Rubeus SharpHound SharpWMI UAT-8837
2026-01-08Cisco TalosAsheer Malhotra, Brandon White, Vitor Ventura
UAT-7290 targets high value telecommunications infrastructure in South Asia
DriveSwitch RushDrop SilentRaid DAGGER PANDA
2025-12-23secpodSantosh Sethuraman
Zero-Day Crisis: CVE-2025-20393 Unpatched on Cisco Email Gateways, Exploited by China-Linked Hackers
UAT-9686
2025-12-17Cisco TalosCisco Talos
UAT-9686 actively targets Cisco Secure Email Gateway and Secure Email and Web Manager
UAT-9686
2025-11-12ISCBrad Duncan
SmartApeSG campaign uses ClickFix page to push NetSupport RAT
SmartApeSG NetSupportManager RAT
2025-11-12AmazonCJ Moses
Amazon discovers APT exploiting Cisco and Citrix zero-days
2025-10-23Twitter (@salmanvsf)Salman Shaikh
Tweet about Discovery of Smile PaaS admin panel
2025-10-16Cisco TalosMichael Kelley, Vanja Svajcer
BeaverTail and OtterCookie evolve with a new Javascript module
BeaverTail OtterCookie InvisibleFerret
2025-10-15Trend MicroDove Chiu, Lucien Chuang
Operation Zero Disco: Attackers Exploit Cisco SNMP Vulnerability to Deploy Rootkits
2025-09-30Palo Alto Networks Unit 42Lior Rochberger
Phantom Taurus: A New Chinese Nexus APT and the Discovery of the NET-STAR Malware Suite
NET-STAR
2025-09-29ShindanPaul Viard
DHCSpy - Discovering the Iranian APT MuddyWater
DCHSpy
2025-09-18Silent PushSilent Push
CountLoader: Silent Push Discovers New Malware Loader Being Served in 3 Different Versions
CountLoader
2025-09-08Silent PushSilent Push
Salt Typhoon and UNC4841: Silent Push Discovers New Domains; Urges Defenders to Check Telemetry and Log Data
2025-08-26Twitter (@ESETresearch)ESET Research
Tweet about PromptLock discovery
PromptLock
2025-08-15Cisco TalosAsheer Malhotra, Brandon White, Vitor Ventura
UAT-7237 targets Taiwanese web hosting infrastructure
SoundBill UAT-7237
2025-08-12Cisco TalosEdmund Brumaghin, Jordyn Dunk
Malvertising campaign leads to PS1Bot, a multi-stage malware framework
PS1Bot
2025-08-04Beazley Security LabsAlex Delamotte, Bobby Venal, Francisco Donoso, Jim Walter, Sam Mayers, Tell Hause
Ghost in the Zip | New PXA Stealer and Its Telegram-Powered Ecosystem
PXA Stealer
2025-08-04Sentinel LABSAlex Delamotte, Bobby Venal, Francisco Donoso, Jim Walter, Sam Mayers, Tell Hause
Ghost in the Zip | New PXA Stealer and Its Telegram-Powered Ecosystem
PXA Stealer
2025-08-01Nextron SystemsPezier Pierre-Henri
Plague: A Newly Discovered PAM-Based Backdoor for Linux
Plague