Malpedia Library

Click here to download all references as Bib-File.•

2025-07-17 ⋅ ⋅ Cert-UA ⋅ Cert-UA
UAC-0001 cyberattacks on the security and defense sector using the LAMEHUG software using LLM (large language model) (CERT-UA#16039)
LAMEHUG

2025-07-17 ⋅ National Police Agency (Japan) ⋅ National Police Agency (Japan)
Phobos/8Base Decryption Tool
8Base Phobos

2025-07-16 ⋅ Proofpoint ⋅ Mark Kelly, Proofpoint Threat Research Team
Phish and Chips: China-Aligned Espionage Actors Ramp Up Taiwan Semiconductor Industry Targeting
Cobalt Strike Voldemort UNK_DropPitch UNK_FistBump UNK_SparkyCarp

2025-07-15 ⋅ Reverse The Malware ⋅ Diyar Saadi
Analysis Malicious Batch Script

2025-07-14 ⋅ Socket ⋅ Kirill Boychenko
Contagious Interview Campaign Escalates With 67 Malicious npm Packages and New Malware Loader
BeaverTail InvisibleFerret

2025-07-14 ⋅ Arda Büyükkaya ⋅ EclecticIQ Threat Research Team
GLOBAL GROUP: Emerging Ransomware-as-a-Service, Supporting AI Driven Negotiation and Mobile Control Panel for Their Affiliates
Global

2025-07-12 ⋅ t0ast's blog ⋅ t0ast
Global Group: Ransomware-as-a-Service with AI-powered Negotiation
Global

2025-07-08 ⋅ Acronis ⋅ Acronis Security
SafePay ransomware: the fast rising threat targeting MSPs
SafePay

2025-07-08 ⋅ Trellix ⋅ Akhil Reddy, Alex Lanstein, Alisha Kadam, Aniket Choukde, Aparna Aripirala, Pham Duy Phuc
From Click to Compromise: Unveiling the Sophisticated Attack of DoNot APT Group on Southern European Government Entities

2025-07-08 ⋅ United States District Court (Southern District of New York) ⋅ United States District Court Southern District of New York
Badbox Takedown Court Order
BADBOX

2025-07-07 ⋅ CyberSecurityNews ⋅ Kaavija
NightEagle APT Attacking Industrial Systems by Exploiting 0-Days and With Adaptive Malware
NightEagle

2025-07-07 ⋅ Github (VenzoV) ⋅ VenzoV
Golang garbled executable from Amatera config
Amatera

2025-07-04 ⋅ Qianxin ⋅ RedDrip7
Exclusive disclosure of the attack activities of the APT group “NightEagle”

2025-07-03 ⋅ Rapid7 ⋅ Rapid7
Scattered Spider: Rapid7 Insights, Observations, and Recommendations
MimiKatz POORTRY

2025-07-02 ⋅ 0x0d4y ⋅ 0x0d4y
VELETRIX Loader Dissection: Kill Chain Analysis of China-Nexus Telecommunications Infrastructure Targeting
VELETRIX

2025-07-02 ⋅ CrowdStrike ⋅ Counter Adversary Operations
CrowdStrike Services Observes SCATTERED SPIDER Escalate Attacks Across Industries

2025-07-02 ⋅ K7 Security ⋅ Suresh Reddy
@mentalpositive’s New macOS Stealer: AMOS Repackaged or a New Cyber Threat?
AMOS

2025-07-01 ⋅ CERT-IL ⋅ CERT-IL
DevMan Ransomware Threat Actor Report
DEVMAN

2025-07-01 ⋅ SpyCloud ⋅ SpyCloud Labs Research Team
State Secrets for Sale: More Leaks from the Chinese Hack-for-Hire Industry

2025-07-01 ⋅ Medium walmartglobaltech ⋅ Jason Reaves
Janela RAT and a stealer extension delivered together
JanelaRAT