Malpedia Library

Click here to download all references as Bib-File.•

2025-05-30 ⋅ Intrinsec ⋅ David Sardinha
BtHoster: Identifying noisy networks emitting malicious traffic through masscan servers

2025-05-29 ⋅ Fortinet ⋅ John Simmons, Xiaopeng Zhang
Deep Dive into a Dumped Malware without a PE Header

2025-05-29 ⋅ Elastic ⋅ Jia Yu Chan
Chasing Eddies: New Rust-based InfoStealer used in CAPTCHA campaigns
EDDIESTEALER

2025-05-28 ⋅ Medium (@mvaks) ⋅ mvaks
Bombardino Crocodilo in Poland — analysis of IKO Lokaty mobile malware campaign
Crocodilus

2025-05-28 ⋅ Rapid7 ⋅ Anna Širokova, Ivan Feigl
NSIS Abuse and sRDI Shellcode: Anatomy of the Winos 4.0 Campaign
Winos

2025-05-28 ⋅ EclecticIQ ⋅ Alon Gal, Arda Büyükkaya
Pakistan Telecommunication Company (PTCL) Targeted by Bitter APT During Heightened Regional Conflict
WmRAT

2025-05-28 ⋅ Darktrace ⋅ Tara Gould
PumaBot: Novel Botnet Targeting IoT Surveillance Devices
PumaBot

2025-05-28 ⋅ Google ⋅ Patrick Whitsell
Mark Your Calendar: APT41 Innovative Tactics
TOUGHPROGRESS

2025-05-28 ⋅ Trustwave ⋅ Cris Tomboc, King Orande
PhaaS the Secrets: The Hidden Ties Between Tycoon2FA and Dadsec's Operations

2025-05-28 ⋅ Greynoise ⋅ GreyNoise Research
GreyNoise Discovers Stealthy Backdoor Campaign Affecting Thousands of ASUS Routers

2025-05-27 ⋅ AIVD ⋅ AIVD
Unknown Russian group behind hacks Dutch targets
Void Blizzard

2025-05-27 ⋅ Trend Micro ⋅ Joseph C Chen
Earth Lamia Develops Custom Arsenal to Target Multiple Industries
BypassBoss Cobalt Strike JuicyPotato PULSEPACK STOWAWAY Vshell

2025-05-27 ⋅ DomainTools ⋅ DomainTools
Inside a VenomRAT Malware Campaign
Venom RAT

2025-05-27 ⋅ Fortinet ⋅ Xiaopeng Zhang
Infostealer Malware FormBook Spread via Phishing Campaign – Part II
Formbook

2025-05-27 ⋅ DCSO ⋅ Bennet Conrads, Denis Szadkowski, Johann Aydinbas, Moaath Oudeh
SafePay: The new kid on the block
SafePay

2025-05-27 ⋅ Microsoft ⋅ Microsoft Threat Intelligence
New Russia-affiliated actor Void Blizzard targets critical sectors for espionage
Void Blizzard

2025-05-27 ⋅ AIVD ⋅ AIVD
AIVD and MIVD identify new Russian cyber threat actor

2025-05-26 ⋅ Yonhap News Agency ⋅ Kim Boram
Investigation into SK Telecom data breach expands to KT, LG Uplus: sources
BPFDoor

2025-05-23 ⋅ Shadow Banker ⋅ Shadow Banker
Shadow Banker Makes Glorious Return, Interviews Guy Exposing Conti Command & Control
Conti Conti

2025-05-23 ⋅ TechCrunch ⋅ Lorenzo Franceschi-Bicchierai
Mysterious hacking group Careto was run by the Spanish government, sources say
Careto Careto