Malpedia Library

2025-10-14 ⋅ Synacktiv ⋅ Theo Letailleur
LinkPro: eBPF rootkit analysis
LinkPro

2025-10-14 ⋅ ⋅ Synacktiv ⋅ Theo Letailleur
LinkPro: analysis of an eBPF rootkit
LinkPro vGet

2025-10-14 ⋅ Reliaquest ⋅ RELIAQUEST THREAT RESEARCH TEAM
SOE-phisticated Persistence: Inside Flax Typhoon's ArcGIS Compromise

2025-10-14 ⋅ Gatewatcher ⋅ Gatewatcher, Gatewatcher's purple team
Data Breach: the operations of "Charming Kitten" revealed

2025-10-13 ⋅ ⋅ Logpresso ⋅ Hwang Min-kyung
[Threat Analysis] Lazarus Group Analyzes Malware for Windows and MacOS

2025-10-13 ⋅ SpyCloud ⋅ SpyCloud Labs Research Team
More Than Meets the YY: Analyzing the YYlaiyu PhaaS Panel

2025-10-13 ⋅ NCSC UK ⋅ NCSC UK
Malware Analysis Report: RayInitiator & LINE VIPER

2025-10-13 ⋅ Proofpoint ⋅ Kyle Cucci, Proofpoint Threat Research Team, Selena Larson, Tommy Madjar
When the monster bytes: tracking TA585 and its arsenal
MonsterV2

2025-10-10 ⋅ McAfee ⋅ Harshil Patel, Prabudh Chakravorty
Astaroth: Banking Trojan Abusing GitHub for Resilience
Astaroth

2025-10-10 ⋅ Security Affairs ⋅ Pierluigi Paganini
Ukraine sees surge in AI-Powered cyberattacks by Russia-linked Threat Actors
WRECKSTEEL HOMESTEEL GIFTEDCROOK UAC-0227

2025-10-10 ⋅ ReversingLabs ⋅ Karlo Zanki
Shai-hulud npm attack: What you need to know
Shai-Hulud

2025-10-10 ⋅ KrebsOnSecurity ⋅ Brian Krebs
DDoS Botnet Aisuru Blankets US ISPs in Record DDoS
Aisuru

2025-10-10 ⋅ Malcat ⋅ Renaud Tabary
Malcat scripting tutorial: deobfuscating Latrodectus
Latrodectus

2025-10-10 ⋅ Socket ⋅ Kirill Boychenko
North Korea’s Contagious Interview Campaign Escalates: 338 Malicious npm Packages, 50,000 Downloads
BeaverTail InvisibleFerret

2025-10-10 ⋅ ⋅ Gatewatcher ⋅ Gatewatcher's purple team
Fuite de données: les opérations de "Charming Kitten" révélées

2025-10-09 ⋅ Microsoft ⋅ Microsoft Threat Intelligence
Investigating targeted “payroll pirate” attacks affecting US universities
Storm-2657

2025-10-09 ⋅ Red Canary ⋅ Chris Brook, Tony Lambert
A taxonomy of Mac stealers: Distinguishing Atomic, Odyssey, and Poseidon
AMOS Odyssey Stealer Poseidon Stealer

2025-10-08 ⋅ ⋅ CIP ⋅ State Service of Special Communication and Information Protection of Ukraine (CIP)
New cyber threats: who and how to attack enemy groups
WRECKSTEEL HOMESTEEL GIFTEDCROOK UAC-0227

2025-10-08 ⋅ Volexity ⋅ Callum Roxan, Killian Raimbaud, Steven Adair
APT Meets GPT: Targeted Operations with Untamed LLMs
UTA0388

2025-10-08 ⋅ Cyfirma ⋅ cyfirma
CYBER THREAT LANDSCAPE REPORT – UNITED ARAB EMIRATES (UAE)
Kazu