Malpedia Library

Click here to download all references as Bib-File.•

2025-05-12 ⋅ Genians ⋅ Genians
Analysis of APT37 Attack Case Disguised as a Think Tank for National Security Strategy in South Korea (Operation. ToyBox Story)
RokRAT

2025-05-10 ⋅ cocomelonc ⋅ cocomelonc
Malware development trick 47: simple Windows clipboard hijacking. Simple C example.
CosmicDuke RokRAT

2025-05-09 ⋅ Lumen ⋅ Chris Formosa, Ryan English
Classic Rock: Hunting a Botnet that preys on the Old

2025-05-09 ⋅ US Department of Justice ⋅ U.S. Attorney's Office, Northern District of Oklahoma
Botnet Dismantled in International Operation, Russian and Kazakhstani Administrators Indicted
TheMoon

2025-05-09 ⋅ Lumen ⋅ Black Lotus Labs
Classic Rock: Hunting a Botnet that preys on the Old

2025-05-08 ⋅ DataBreaches.net ⋅ @chum1ng0, Dissent
Negotiations with the Akira ransomware group: an ill-advised approach
Akira

2025-05-08 ⋅ WithSecure ⋅ WithSecure
KeePass trojanised in advanced malware campaign
Nitrogen Loader

2025-05-08 ⋅ Fortinet ⋅ Ran Mizrahi
Multilayered Email Attack: How a PDF Invoice and Geo-Fencing Led to RAT Malware
Ratty

2025-05-07 ⋅ US Department of Justice ⋅ U.S. Attorney's Officea Northern District of Oklahoma
Case 4:25-cr-00160-JDR: Indictment of Alexey Viktorovich Chertkov, Kirill Vladimirovich Morozov, Aleksandr Aleksandrovich Shishkin and Dmitriy Rubtsov
TheMoon

2025-05-07 ⋅ FBI ⋅ FBI
Cyber Criminal Services Target End-of-Life Routers to Launch Attacks and Hide Their Activities
TheMoon

2025-05-07 ⋅ Palo Alto Networks Unit 42 ⋅ Unit 42
Iranian Cyber Actors Impersonate Model Agency in Suspected Espionage Operation
APT35

2025-05-07 ⋅ NTT Security ⋅ Masaya Motoda, Rintaro Koike
Additional Features of OtterCookie Malware Used by WaterPlum
BeaverTail OtterCookie InvisibleFerret

2025-05-06 ⋅ NCSC UK ⋅ NCSC UK
Authentic Antics: Highly targeted credential and OAuth 2.0 token- stealing malware targeting Outlook

2025-05-06 ⋅ Akamai ⋅ Kyle Lefton
Here Comes Mirai: IoT Devices RSVP to Active Exploitation
LZRD

2025-05-05 ⋅ BleepingComputer ⋅ Lawrence Abrams
New "Bring Your Own Installer" EDR bypass used in ransomware attack

2025-05-05 ⋅ Hunt.io ⋅ Hunt.io
APT36-Style ClickFix Attack Spoofs Indian Ministry to Target Windows & Linux

2025-05-05 ⋅ Security Chu ⋅ Security Chu
Negotiations with the Akira ransomware group: an ill-advised approach
Akira Akira

2025-05-02 ⋅ Kroll ⋅ Dave Truman, George Glass, Marc Messer
Prelude: Crypto Heist Causes HAVOC
Havoc

2025-05-01 ⋅ cocomelonc ⋅ cocomelonc
Malware development trick 46: simple Windows keylogger. Simple C example.
MyDoom Nokki RokRAT

2025-05-01 ⋅ Fortinet ⋅ Faisal Abdul Malik Qureshi, Fred Gutierrez, Hossein Jazi, John Simmons, Mark Robson, Said Wali, Xiaopeng Zhang
FortiGuard Incident Response Team Detects Intrusion into Middle East Critical National Infrastructure
Havoc