Malpedia Library

Click here to download all references as Bib-File.•

2025-05-20 ⋅ ⋅ Kaspersky ⋅ AMR
https://securelist.ru/purerat-attacks-russian-organizations/112619/
PureRAT

2025-05-20 ⋅ Luigi Martire, Pierluigi Paganini
Sarcoma Ransomware Unveiled: Anatomy of a Double Extortion Gang
Sarcoma

2025-05-20 ⋅ European Council ⋅ Council of the European Union
Russian hybrid threats: EU lists further 21 individuals and 6 entities and introduces sectoral measures in response to destabilising activities against the EU, its member states and international partners

2025-05-20 ⋅ Acronis ⋅ Jozsef Gegeny, Prakas Thevendaran, Santiago Pontiroli
From banks to battalions: SideWinder’s attacks on South Asia’s public sector

2025-05-16 ⋅ AhnLab ⋅ ASEC
DBatLoader (ModiLoader) Being Distributed to Turkish Users
DBatLoader

2025-05-16 ⋅ Gdata ⋅ Karsten Hahn
Printer company provided infected software downloads for half a year
SnipVex

2025-05-15 ⋅ ⋅ EST Security ⋅ Alyac
Beware of Backdoor Malware being Distributed by Exploiting Legitimate Certificates!
NikiHTTP

2025-05-15 ⋅ ESET Research ⋅ Matthieu Faou
Operation RoundPress
SpyPress

2025-05-14 ⋅ Zscaler ⋅ ThreatLabZ research team
Technical Analysis of TransferLoader
TransferLoader

2025-05-13 ⋅ Trend Micro ⋅ Philip Chen, Pierre Lee, Vickie Su
Earth Ammit Disrupts Drone Supply Chains Through Coordinated Multi-Wave Attacks in Taiwan

2025-05-13 ⋅ EclecticIQ ⋅ Arda Büyükkaya
China-Nexus Nation State Actors Exploit SAP NetWeaver (CVE-2025-31324) to Target Critical Infrastructures
KrustyLoader SNOWLIGHT VShell

2025-05-13 ⋅ Cisco Talos ⋅ Asheer Malhotra, Ashley Shen, Edmund Brumaghin, Vitor Ventura
Defining a new methodology for modeling and tracking compartmentalized threats

2025-05-13 ⋅ CSA ⋅ Ahmad Abdillah
Intrusion Insights Straight from Leaked Operator Chats
LockBit LockBit LockBit

2025-05-13 ⋅ Gdata ⋅ Chloe de Leon, Lovely Antonio
Sit, Fetch, Steal - Chihuahua Stealer: A new Breed of Infostealer
Chihuahua

2025-05-12 ⋅ Synacktiv ⋅ Maxence Fossat
Open-source toolset of an Ivanti CSA attacker
HTran iox reGeorg

2025-05-12 ⋅ Genians ⋅ Genians
Analysis of APT37 Attack Case Disguised as a Think Tank for National Security Strategy in South Korea (Operation. ToyBox Story)
RokRAT

2025-05-09 ⋅ Lumen ⋅ Chris Formosa, Ryan English
Classic Rock: Hunting a Botnet that preys on the Old

2025-05-09 ⋅ US Department of Justice ⋅ U.S. Attorney's Office, Northern District of Oklahoma
Botnet Dismantled in International Operation, Russian and Kazakhstani Administrators Indicted
TheMoon

2025-05-09 ⋅ Lumen ⋅ Black Lotus Labs
Classic Rock: Hunting a Botnet that preys on the Old

2025-05-08 ⋅ DataBreaches.net ⋅ @chum1ng0, Dissent
Negotiations with the Akira ransomware group: an ill-advised approach
Akira