Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2025-11-25Arctic WolfArctic Wolf Labs Team, Jacob Faires
Russian RomCom Utilizing SocGholish to Deliver Mythic Agent to U.S. Companies Supporting Ukraine
FAKEUPDATES
2025-11-22LinkedIn (Idan Tarab)Idan Tarab
India‑Aligned "Dropping Elephant" Pushes a New Stealth Marshalled‑Python Backdoor via MSBuild Dropper in Observed Activity Targeting Pakistan’s Defense Sector
2025-11-20GoogleDan Perez, Harsh Parashar, Tierra Duncan
Beyond the Watering Hole: APT24's Pivot to Multi-Vector Attacks
BADAUDIO Cobalt Strike
2025-11-19NetAskari SubstackNetAskari
Critical strike: China's hacking training grounds (PART 1)
2025-11-19Natto ThoughtsEugenio Benincasa, Natto Team
China’s Cybersecurity Companies Advancing Offensive Cyber Capabilities Through Attack-Defense Labs
2025-11-19AmazonCJ Moses
New Amazon Threat Intelligence findings: Nation-state actors bridging cyber and kinetic warfare
2025-11-19SecurityScorecardGilad Friedenreich Maizles, Marty Kareem
Thousands of ASUS Routers Hijacked in Global Operation “WrtHug” in a Suspected China-Backed Campaign
2025-11-19ESET ResearchDávid Gábriš, Facundo Muñoz
PlushDaemon compromises network devices for adversary-in-the-middle attacks
EdgeStepper LittleDaemon
2025-11-18OligoAvi Lumelsky, Gal Elbaz
ShadowRay 2.0: Attackers Turn AI Against Itself in Global Campaign that Hijacks AI Into Self-Propagating Botnet
IronErn440
2025-11-18DataBreaches.netDissent
From bad to worse: Doctor Alliance hacked again by same threat actor (2)
Kazu
2025-11-18Cert-UACert-UA
Cyberattack against an educational institution in eastern Ukraine using the GAMYBEAR software tool (CERT-UA#18329)
GAMYBEAR UAC-0241
2025-11-17KELAKELA Cyber Intelligence Center
ByteToBreach: A Deep Dive into a Persistent Data Leak Operator
ByteToBreach
2025-11-17moldovaliveMarina Gridina
War in the shadows of servers: how a Russian company could have organized an attack against Stark Industries from Moldova
2025-11-170x0d4y0x0d4y
Nation-State Actor’s Arsenal: An In-Depth Look at Lazarus’ ScoringMathTea
ScoringMathTea
2025-11-14Github (cocomelonc)cocomelonc
Linux hacking part 8: Linux password-protected bind shell. Simple NASM example
2025-11-13Trend MicroJunestherry Dela Cruz, Sarah Pearl Camiling
Increase in Lumma Stealer Activity Coincides with Use of Adaptive Browser Fingerprinting Tactics
Lumma Stealer Water Kurita
2025-11-13Ransom-ISACYashraj Solanki
Cross-Chain TxDataHiding Crypto Heist: A Very Chainful Process (Part 3)
JADESNOW
2025-11-13NVISO LabsBart Parys, Efstratios Lontzetidis, Stef Collart
Contagious Interview Actors Now Utilize JSON Storage Services for Malware Delivery
BeaverTail OtterCookie InvisibleFerret Beavertail TsunamiKit
2025-11-11BotcrawlSean Doyle
National Civil Service Commission of Colombia Data Breach Exposes 2.9 TB of Government Files
Kazu
2025-11-10MandiantBill Glynn, Kevin O'Flynn, Praveeth DSouza, Stallone D'Souza, Yash Gupta
No Place Like Localhost: Unauthenticated Remote Access via Triofox Vulnerability CVE-2025-12480
UNC6485