Malpedia Library

Click here to download all references as Bib-File.•

2025-10-14 ⋅ Reliaquest ⋅ RELIAQUEST THREAT RESEARCH TEAM
SOE-phisticated Persistence: Inside Flax Typhoon's ArcGIS Compromise

2025-10-14 ⋅ Gatewatcher ⋅ Gatewatcher, Gatewatcher's purple team
Data Breach: the operations of "Charming Kitten" revealed

2025-10-13 ⋅ SpyCloud ⋅ SpyCloud Labs Research Team
More Than Meets the YY: Analyzing the YYlaiyu PhaaS Panel

2025-10-13 ⋅ Proofpoint ⋅ Kyle Cucci, Proofpoint Threat Research Team, Selena Larson, Tommy Madjar
When the monster bytes: tracking TA585 and its arsenal
MonsterV2

2025-10-10 ⋅ ⋅ Gatewatcher ⋅ Gatewatcher's purple team
Fuite de données: les opérations de "Charming Kitten" révélées

2025-10-07 ⋅ Cybernews ⋅ Ernestas Naprys
Steam, Riot Games hit by disruptions: massive DDoS attack suspected
Aisuru

2025-10-01 ⋅ Chainanalysis ⋅ Chainalysis Team
DPRK IT Workers: Inside North Korea’s Crypto Laundering Network

2025-09-28 ⋅ Malasada Tech ⋅ Aaron Samala
Oyster Malware Delivery via Teams Fake App
Broomstick

2025-09-26 ⋅ BlackPoint ⋅ Nevan Beal, Sam Decker
Malicious Teams Installers Drop Oyster Malware
Broomstick

2025-09-16 ⋅ Proofpoint ⋅ Greg Lesnewich, Mark Kelly, Nick Attfield, Proofpoint Threat Research Team
Going Underground: China-aligned TA415 Conducts U.S.-China Economic Relations Targeting Using VS Code Remote Tunnels

2025-09-15 ⋅ Zscalar ⋅ ThreatLabZ research team
SmokeLoader Rises From the Ashes
SmokeLoader

2025-08-26 ⋅ Sophos ⋅ Sophos Counter Threat Unit Research Team
Velociraptor incident response tool abused for remote access

2025-08-08 ⋅ AhnLab ⋅ AhnLab ASEC Analysis Team
Distribution of SmartLoader Malware via Github Repository Disguised as a Legitimate Project
Rhadamanthys SmartLoader

2025-08-01 ⋅ Infrawatch Research Team
Belarus-Linked DSLRoot Proxy Network Deploys Hardware in U.S. Residences, Including Military Homes

2025-07-24 ⋅ SYGNIA ⋅ Sygnia Team
Fire Ant: A Deep-Dive into Hypervisor-Level Espionage

2025-07-24 ⋅ Red Canary ⋅ The Red Canary Team
Intelligence Insights: July 2025
Broomstick

2025-07-23 ⋅ Natto Thoughts ⋅ Natto Team
HAFNIUM-Linked Hacker Xu Zewei: Riding the Tides of China’s Cyber Ecosystem

2025-07-18 ⋅ Arctic Wolf ⋅ Arctic Wolf Labs Team
Greedy Sponge Targets Mexico with AllaKore RAT and SystemBC
AllaKore SystemBC

2025-07-16 ⋅ Proofpoint ⋅ Mark Kelly, Proofpoint Threat Research Team
Phish and Chips: China-Aligned Espionage Actors Ramp Up Taiwan Semiconductor Industry Targeting
Cobalt Strike Voldemort UNK_DropPitch UNK_FistBump UNK_SparkyCarp

2025-07-14 ⋅ Arda Büyükkaya ⋅ EclecticIQ Threat Research Team
GLOBAL GROUP: Emerging Ransomware-as-a-Service, Supporting AI Driven Negotiation and Mobile Control Panel for Their Affiliates
Global