Malpedia Library

Click here to download all references as Bib-File.•

2026-01-12 ⋅ Securonix ⋅ Aaron Beardslee, Akshay Gaikwad, Shikha Sangwan
SHADOW#REACTOR – Text-Only Staging, .NET Reactor, and In-Memory Remcos RAT Deployment
Remcos

2026-01-12 ⋅ ⋅ Cert-UA ⋅ Cert-UA
"Unreliable Fund": targeted cyberattacks UAC-0190 against SOU using PLUGGYAPE (CERT-UA#19092)
PLUGGYAPE Void Blizzard

2026-01-11 ⋅ Medium APOPHIS ⋅ Michelle Khalil
ValleyRAT_S2 Chinese campaign
ValleyRAT

2026-01-09 ⋅ flare ⋅ Adrian Cheek
New Threat Actor Group PayTool Targets Canadians with Traffic Scams
PayTool

2026-01-09 ⋅ The Hacker News ⋅ Ravie Lakshmanan
Russian APT28 Runs Credential-Stealing Campaign Targeting Energy and Policy Organizations

2026-01-09 ⋅ DARKReading ⋅ Nate Nelson
Russia’s Fancy Bear APT Doubles Down on Global Secrets Theft

2026-01-08 ⋅ Cloudsek ⋅ somedieyoungZZ
Reborn in Rust: Muddy Water Evolves Tooling with RustyWater Implant
Archer RAT

2026-01-08 ⋅ FBI ⋅ IC3
North Korean Kimsuky Actors Leverage Malicious QR Codes in Spearphishing Campaigns Targeting U.S. Entities

2026-01-08 ⋅ KrebsOnSecurity ⋅ Brian Krebs
Who Benefited from the Aisuru and Kimwolf Botnets?
Kimwolf Aisuru

2026-01-07 ⋅ Dark Web Informer ⋅ Dark Web Informer
Singapore Traditional Chinese Medicine Clinic Kin Teck Tong Allegedly Suffers Data Breach Exposing 150,000 Patient Records
LulzIntel

2026-01-07 ⋅ MalBeacon ⋅ MalBeacon
[Op Report] CastleRAT Campaign leads to Hands-on-Keyboard ATO Operations
NightshadeC2

2026-01-07 ⋅ Recorded Future ⋅ Insikt Group
GRU-Linked BlueDelta Evolves Credential Harvesting

2026-01-06 ⋅ Reversing Labs ⋅ Robert Simmons
Unpacking the packer ‘pkr_mtsi’
Broomstick Supper

2026-01-06 ⋅ Trellix ⋅ Aswath A
The Ghost in the Machine: Unmasking CrazyHunter's Stealth Tactics
CrazyHunter

2026-01-06 ⋅ TechCrunch ⋅ Zack Whittaker
Founder of spyware maker pcTattletale pleads guilty to hacking and advertising surveillance software
pcTattletale

2026-01-06 ⋅ Resecurity ⋅ Resecurity
Cyber Counterintelligence (CCI): When 'Shiny Objects' trick 'Shiny Hunters'

2026-01-05 ⋅ HudsonRock ⋅ InfoStealers
Dozens of Global Companies Hacked via Cloud Credentials from Infostealer Infections & More at Risk

2026-01-05 ⋅ SecurityWeek ⋅ Ionut Arghire
Kimwolf Android Botnet Grows Through Residential Proxy Networks
Kimwolf

2026-01-03 ⋅ Linkedin (Tammy H.) ⋅ Tammy H.
Emerging Threat: The DeadFrog AV/EDR Killer

2026-01-02 ⋅ The Record ⋅ Jonathan Greig
Sedgwick confirms cyber incident affecting its major federal contractor subsidiary
TridentLocker